1. Meaning of personal information processing policy
EW Entertainment (hereinafter referred to as “Company”) collects users’ personal information as follows in order to provide Crash Racing (hereinafter referred to as “Service”) to users.
The company attaches great importance to users' personal information and complies with the personal information protection regulations of relevant laws and regulations that information and communication service providers must comply with, including laws related to the Personal Information Protection Act. Through its personal information processing policy, the company informs users of the purpose and method for which personal information provided by users is being used and what measures are being taken to protect personal information. The company is making its privacy policy public so that users can easily view it at any time by disclosing it in the ‘In-game Settings > Privacy Policy menu’.
If the company revises the personal information processing policy as necessary, it will provide advance notice through ‘in-game notices’ 7 days prior to enforcement, and the amendment will be implemented 7 days later. However, if important matters, such as the purpose of collection and use of personal information and the target of third party provision, are revised, a 30-day advance notice will be provided, and the amendment will be implemented after 30 days. The personal information processing policy is notified to users through ‘in-game notices’ so that users can easily find out the revised information.
2. Personal information collected
The company collects only the information necessary to provide basic services during membership registration, service use, product payment, and customer consultation. (Users may refuse the collection and use of personal information. If they refuse the collection and use of personal information, it may be difficult to use some or all of the applicable services.)
The information that users provide directly to the company at the time of membership registration is as follows. a. Email, password, CI
The information that the company automatically collects while users use the service is as follows. a. Data on friend information and guild information created when interacting with other users b. Data about content consumed, functions used, and user behavior recorded while using the service c. Data regarding order number, payment product name, payment amount, payment method, and payment date recorded when purchasing a product within the service d. OS, hardware version, software version, browser type, device ID, language, IP address, cookie, and store information generated and collected depending on the device used.
The information collected when contacting customer service is as follows. a. Email address, name of product purchased, date of product purchase
The company collects personal information through the methods below.
If the user agrees to the collection of personal information and enters the information directly during the process of registering for membership and using the service, the personal information is collected.
During the consultation process through the customer center, the user's personal information may be collected through web pages, emails, phone calls, etc.
Personal information may be collected through a separate consent form at events, seminars, etc. held offline.
Generated information such as device information may be automatically generated and collected during the use of PC web and mobile web/apps. (Users have a choice regarding cookies. By setting options in their web browser, they can allow all cookies, confirm each time a cookie is saved, or refuse to save all cookies. However, the If you refuse to save, you may experience inconvenience in using some services that require login.)
3. Use of collected personal information
The company uses personal information only for the following purposes, including service member management, service development, provision and improvement, and establishment of a safe Internet usage environment.
Personal information is used for member management, including confirmation of intention to become a member, age verification, user identity verification, user identification, and confirmation of intention to withdraw membership.
In addition to providing existing services such as content (including advertising), discovering new service elements and providing existing services, such as providing customized services based on demographic analysis, analysis of service visit and use records, and formation of relationships between users based on personal information and interests. We use personal information for improvement purposes.
Restricting the use of members who violate laws and terms of use, preventing and sanctioning acts that interfere with the smooth operation of the service, including fraudulent use, preventing account theft and illegal transactions, and delivering notices such as revisions to the terms and conditions; Personal information is used to protect users and operate services, such as preserving records for dispute resolution and processing civil complaints.
Personal information is used to verify identity in providing paid services, make purchases and pay fees, and deliver products and services.
If separate consent is obtained, personal information is used for marketing and promotional purposes, such as providing event information and participation opportunities, providing customized advertisements, and providing advertising information.
Personal information is used to analyze service use records and access frequency, statistics on service use, service analysis, and provide customized services based on statistics.
We use personal information to create a service environment where users can use the service with peace of mind in terms of security, privacy, and safety.
Collected personal information may be pseudonymized so that specific individuals cannot be identified and processed for purposes such as statistical compilation, scientific research, and public record preservation. At this time, pseudonymized information is stored and managed separately from additional information to prevent re-identification, and necessary technical and administrative protection measures are taken.
administrative action
Establishment and implementation of internal management plan, regular employee training, etc.
technical measures
Management of access rights to personal information processing systems, installation of access control systems, encryption of unique identification information, etc., installation of security programs
physical action
Access control for computer rooms, data storage rooms, etc.
4. Provision (sharing) and entrustment of personal information
The company uses the user's personal information within the scope notified in “Purpose of collection and use of personal information” and does not use it beyond the above scope or provide or share it with other people or organizations without the user's prior consent. However, the following cases are exceptions.
When outsourcing work related to personal information, the company outsources some of the work to an external company in order to provide convenient and better services. When concluding a consignment contract, the company prohibits the processing of personal information other than for the purpose of performing the consignment, Article 7 establishes and implements technical and managerial measures for personal information protection, restricts re-entrustment, manages and supervises the consignee, and assumes responsibilities such as compensation for damages. We specify related matters in documents such as contracts and supervise whether the trustee handles personal information safely. If the user does not use services related to the work entrusted to the trustee, the user's personal information will not be provided to the trustee.
When necessary to settle fees for providing services
If the user consents in advance
If an act violates the company's terms of use or the company's separately established policies and operating regulations, legal action is required in accordance with relevant laws or in accordance with procedures and methods prescribed by law for investigative purposes.
When there are special provisions in the law or when there is a request from a court, investigative agency, or other administrative agency in accordance with the procedures and methods prescribed by law for the purpose of investigation.
5. Destruction of personal information
User's personal information is destroyed (deleted) once the purpose of collecting or providing personal information is achieved. If a member withdraws membership or has their member ID deleted due to false information, the collected personal information will be completely destroyed and cannot be used for any purpose. However, as there is a risk of damage such as unwanted membership withdrawal due to theft, the withdrawal request will be canceled within 7 days and will be completely destroyed within 7 days from the time of withdrawal in the company's member information database (DB). However, an exception is made for information that must be kept in accordance with relevant laws and regulations.
In addition, in the event of a dispute such as identity theft, a copy of the ID card submitted for identity verification will be destroyed immediately after identity verification. Information on legal representatives of children and youth under the age of 18 will be destroyed when the child or youth reaches the age of majority or when the child or youth withdraws from membership.
User's personal information will be destroyed without delay once the purpose of collection and use of personal information has been achieved. However, if any of the items below apply, it may be kept for a specified period and will not be used for any other purpose. a. In the case of a user who has caused a stir in the service by using the service in an unhealthy manner, the personal information may be kept for one year for the purpose of requesting a judicial investigation or protecting other members. b. The personal information of users who have requested withdrawal may be stored for 7 days for the purpose of managing the personal information and responding to customer inquiries. c. If it is necessary to keep the member's personal information in accordance with the provisions of relevant laws and regulations, the company may retain the member's personal information for a certain period of time specified in the relevant laws and regulations even after the purpose of collection and use has been achieved. i. Records on contracts or subscription withdrawals, etc.: 5 years (Act on Consumer Protection in Electronic Commerce, etc.) ii. Records of payment and supply of goods: 5 years (Act on Consumer Protection in Electronic Commerce, etc.) iii. Records of consumer complaints or dispute resolution: 3 years (Act on Consumer Protection in Electronic Commerce, etc.) iv. Records of labeling and advertising: 6 months (Act on Consumer Protection in Electronic Commerce, etc.) v. Retention of records related to access: 3 months (Communication Secrets Protection Act)
6. User rights and how to exercise them
Users can check, view, or modify their personal information at any time through ‘Settings’ within the game, and may also request cancellation of membership or deletion of personal information through ‘Settings > Delete Account’ within the game. However, if you delete personal information necessary to provide services, you may not be able to receive related services.
Users may withdraw their consent to provide personal information (withdrawal of membership) at any time. To withdraw your consent to the provision of personal information, you can apply for membership withdrawal through the ‘Customer Center’ within the game app. Personal information data will be deleted within 7 days from the time the membership withdrawal application is completed. Additionally, you can exercise your rights stipulated by law, such as viewing or modifying your registered personal information. If personal information is destroyed due to membership withdrawal, related information created and accumulated while the user used the company's services may also be destroyed.
If a user requests correction or deletion of his or her personal information, the company will take necessary action without delay after verifying the user's identity. In addition, when use is restricted in accordance with the Terms of Use, personal information Personal information may be destroyed, including deletion of member ID, at the discretion of the person in charge of protection.
The company does not collect or use personal information of children under 14 years of age.
Viewing and modification of a user's personal information is possible upon request and after verifying the user's identity.
If you request correction of an error in personal information, the personal information will not be used or provided until the correction is completed. Additionally, if incorrect personal information has already been provided to a third party, the result of the correction will be notified to the third party without delay so that the correction can be made.
The company processes personal information canceled or deleted at the user's request as specified in the “Retention and Use Period of Personal Information Collected by the Company” and processes it so that it cannot be viewed or used for any other purpose.
7. Technical and managerial measures to protect personal information
Technical measures a. In order to prevent leakage and damage of personal information due to hacking or computer viruses, the company installs security programs, periodically updates and inspects them, and installs systems in areas where access from the outside is controlled, and monitors and blocks them technically and physically. b. The user's personal information is encrypted, stored and managed, so only the user can know it. For important data, separate security functions such as encrypting files and transmission data or using the file lock function are used. c. Records of access to the personal information processing system are stored and managed for at least one year. However, if personal information is added for more than 50,000 information subjects or unique identification information or sensitive information is processed, they are kept for more than two years. , is managed. Additionally, we use security features to prevent access records from being forged, altered, stolen, or lost. d. By granting access to unauthorized IPs, access to the company's servers is not possible unless you are on the company's internal network. We also do our best to ensure system security, including preventing access to unauthorized ports.
Management measures a. We are implementing measures to manage personal information by designating employees who handle personal information and limiting it to the person in charge. b. We provide regular in-house and external training to employees who process personal information on acquiring new security technologies and personal information protection obligations. c. Necessary measures are taken to control access to personal information by granting, changing, and deleting access rights to the database system that processes personal information, and unauthorized access from outside is controlled using an intrusion prevention system. d. The handover of personal information-related tasks by processors is thoroughly carried out while security is maintained, and responsibility for personal information incidents after joining and leaving the company is made clear. e. Documents and auxiliary storage media containing personal information are stored in a safe place with a lock.
8. Information on personal information protection officer and person in charge
Personal Information Protection Officer
Name: Park Jun-sik
Affiliation: Personal Information Protection Team
Phone: 02-934-0428
Email: privacy@ewenter.co.kr
Personal Information Protection Officer
Name: Park Sang-wook
Affiliation: Personal Information Protection Team
Phone: 02 – 934 – 0428
Email: master@ewenter.co.kr
The company has opened a window where you can submit opinions and complaints regarding personal information protection. If you have any complaints regarding personal information, you may submit your opinion to the person in charge of personal information protection above or request processing from the organizations below. - Personal Information Infringement Report Center (Phone: 118, http://privacy.kisa.or.kr/) - Supreme Prosecutors' Office Cyber Crime Investigation Team (Phone: 02-3480-3570, http://www.spo.go.kr) /) - National Police Agency Cyber Terror Response Center (Phone: 182, http://police.go.kr/www/security/cyber/cyber01.jsp) Also, if there is a dispute regarding personal information, please contact the Personal Information Dispute Mediation Committee (Phone: You can request processing at 1833-6972, http://www.kopico.go.kr/).