Unlock Korea Privacy Policy

Unlock Korea (hereinafter referred to as the “Company”), in accordance with Article 30 of the 「Personal Information Protection Act」, establishes and discloses the following privacy policy to protect the personal information and rights of data subjects and to smoothly handle user complaints related to personal information.

Article 1 (Purpose of Processing Personal Information)

The “Company” processes personal information for the following purposes. The personal information being processed will not be used for any purpose other than those listed below, and if the purpose of use changes, necessary measures, such as obtaining separate co1nsent in accordance with Article 18 of the 「Personal Information Protection Act」, will be implemented.

  1. Website Membership and Management: To confirm the intent to join as a member, for identification and authentication for providing membership services, for maintaining and managing membership status, for preventing fraudulent use of services, for various notices and notifications, and for handling complaints.
  2. Provision of Goods or Services: To process personal information for purposes related to service provision, including booking and consultation for travel products, contract fulfillment, payment, fee settlement, content provision, and travel insurance enrollment.
  3. Marketing and Advertising: For developing new services (products) and providing customized services, for providing event and promotional information and opportunities to participate, for providing services and placing ads based on demographic characteristics, for verifying service validity, and for analyzing access frequency or statistics on member service usage.
  4. Complaint Handling: For identifying the complainant, confirming the details of the complaint, contacting for fact-finding, and notifying of processing results.

Article 2 (Items of Personal Information Processed and Collection Methods)

  1. Items Collected
  • Required: Name, ID, password, email address, mobile phone number.
  • When booking travel products: [Required] Name in Korean/English, date of birth, gender, contact information / [Optional] Passport number (for overseas travel).
  • When enrolling in travel insurance: Resident registration number (after notifying the purpose and obtaining separate consent).
  • Information automatically generated during service use: IP address, cookies, service usage records, visit records, device information.
  1. Collection Methods: Website (membership registration, forums), paper forms, consultation via phone/fax, event entries, provision from partner companies, and collection through information generation tools.

Article 3 (Processing and Retention Period of Personal Information)

  1. The “Company” processes and retains personal information within the period of retention and use stipulated by law or agreed upon when collecting personal information from the data subject.
  2. The respective processing and retention periods for personal information are as follows:
  • Website Membership and Management: Until membership withdrawal. However, in the following cases, information will be retained until the end of the respective period:
  • If an investigation or inquiry is underway due to a violation of relevant laws, until the investigation or inquiry is concluded.
  • If any outstanding claims or debts related to the use of the site remain, until the settlement of said claims or debts.
  • Records on contracts, subscription withdrawals, payments, and supply of goods in e-commerce: 5 years (「Act on Consumer Protection in Electronic Commerce, etc.」).
  • Records on consumer complaints or dispute resolution: 3 years (「Act on Consumer Protection in Electronic Commerce, etc.」).

Article 4 (Provision of Personal Information to Third Parties)

  1. The “Company” provides personal information to third parties only when it falls under Articles 17 and 18 of the 「Personal Information Protection Act」, such as with the consent of the data subject or special provisions in the law.
  2. For the smooth provision of services, the “Company” provides personal information to third parties as follows:
  • Recipient: Travel product suppliers such as airlines, hotels, car rental companies, and local tour operators.
  • Purpose of Use by Recipient: Booking of travel products, fulfillment of contracts, and identity verification.
  • Items of Personal Information Provided: Name in Korean/English, contact information, email address, and other information necessary for booking.
  • Retention and Use Period: Until the completion of the provision of goods and services and for the retention period required by relevant laws.

Article 5 (Entrustment of Personal Information Processing)

For the smooth processing of personal information, the “Company” entrusts the processing of personal information as follows:

  • Payment Processing: [Enter name of Payment Gateway (PG) company]
  • Customer Service: [Enter name of customer support system provider (if used)]
  • IT System Operation: [Enter name of IT hosting company]

Article 6 (Rights and Obligations of Data Subjects and Their Legal Representatives, and How to Exercise Them)

  1. The data subject may exercise their rights to access, correct, delete, or request the suspension of processing of their personal information at any time with respect to the “Company.”
  2. The exercise of these rights can be done in writing, by phone, email, or fax (FAX) to the “Company,” and the “Company” will take action without delay.

Article 7 (Destruction of Personal Information)

  1. The “Company” will destroy the personal information without delay when it becomes unnecessary, such as upon the expiration of the retention period or the achievement of the processing purpose.
  2. The destruction procedure and method are carried out safely in accordance with relevant laws.

Article 8 (Measures to Ensure the Safety of Personal Information)

The “Company” takes the following administrative, technical, and physical measures to ensure the safety of personal information:2

  1. Administrative Measures: Establishment and implementation of an internal management plan, regular employee training, etc.
  2. Technical Measures: Management of access rights to personal information processing systems, installation of access control systems, encryption of unique identification infor6mation, installation of security programs.
  3. Physical Measures: Access control for computer rooms, data storage rooms, etc.

Article 9 (Personal Information Protection Officer)

The “Company” is responsible for overseeing all tasks related to the processing of personal information and designates a Personal Information Protection Officer as follows to handle complaints and provide remedies for data subjects related to personal information processing.

  • Personal Information Protection Officer
  • Name: [Enter Name of Officer]
  • Position: [Enter Position of Officer]
  • Contact: [Enter Contact Info/Email of Officer]
  • Department in Charge of Personal Information Protection
  • Department Name: [Enter Department Name]
  • Contact Person: [Enter Name of Contact Person]
  • Contact: [Enter Contact Info/Email of Person]

Article 10 (Changes to the Privacy Policy)

This Privacy Policy is effective from the date of its enforcement. If there are any additions, deletions, or corrections to the content in accordance with laws and policies, they will be announced through a notice at least 7 days prior to the implementation of the changes.

Addendum

This Privacy Policy shall become effective on July 15, 2025.