Skip to menu


Privacy Policy

Privacy Policy

In accordance with the Personal Information Protection Act, <MRBAS Co., Ltd.> (‘’ and ‘MRBAS’) follows the processing policies are in place to protect the privacy and rights of users, and to smoothly handle users’ complaints related to personal information.

<MRBAS Co., Ltd.>(‘MRBAS’) will announce through the website announcement (or individual notice) when the company amends the privacy policy.

The policy will go into effect on May 7th, 2020.


  1. 1. Purpose of processing personal information <MRBAS Co., Ltd.> (‘’ and ‘MRBAS’) processes personal information for the following purposes. The processed personal information will not be used for purpose other than the following, and prior consent will be sought when the purpose of use is changed.

  1. Uses for Marketing and Advertising

    We process personal information for the purpose of grasping the frequency of access or statistics on member use of the service.


  1. 2. Purpose of processing personal information (‘’ and ‘MRBAS’) files registered and disclosed in accordance with Article 32 of the Personal Information Protection Act is as follows.

    Others (‘’ and ‘MRBAS’) will disclose the personal information file registration details by the Ministry of Public Administration and Security’s Personal Information Protection Comprehensive Support Portal ( Personal Information Petition Personal Information Request for reading, etc. Please use the personal Information file list search menu.


  2. 3. Period of processing and retention of personal information

    1.  <MRBAS Co., Ltd.> (‘MRBAS’) is the retention and use period of personal information pursuant to laws and regulations, or the retention of personal information agreed upon when collecting personal information from an information subject. Personal information is processed and retained within the period of use.

    2. Each personal information is processed and retained as follows. Personal information related to <Use for Marketing and Advertising> will be retained and used for the above purposes from consent date for collection and use to <Permanent>. –Retention basis: Only the latest login date of the visitor is collected, and the rest of the information is encrypted so that the administrator cannot know. –Related laws: Reasons for exception.


  1. 4. Rights and obligations of the data subject and legal representatives and how to exercise them. The user can exercise the following rights as a personal information subject.

    1. The information subject exercise the right to view, correct, delete, or stop processing personal information at any time to MRBAS Co., Ltd.

    2. The exercise of rights pursuant to paragraph (1) shall be made in accordance with Article 41 (1) of the Enforcement Decree of the Personal Information Protection Act for MRBAS Co., Ltd. Whom will take action to write, electronic mail, fax transfer, etc. without delay.

    3. The exercise of rights pursuant to paragraph (1) may be mad trough a legal representative of the data subject or an agent such as a person who has been delegated. In this case, you must submit a power of attorney in accordance with Form 11 of the Enforcement Rules of the Personal Information Protection Act.

    4. Request for access to personal information and suspension of processing may be restricted in accordance with Article 35 (5) and Article 37 (2) of the Personal Information Protection Act.

    5. Requests for correction and deletion of personal information cannot be requested if the personal information is specified for collection in other laws and regulations.

    6. MRBAS Co., Ltd. verifies whether the person who made the request, such as request for viewing, correction or deletion, or a request for suspension of processing, according to the rights of the data subject, is the person or a legitimate agent.

  2. 5. Preparation of personal information items to be processed

    <MRBAS Co., Ltd.> (‘’ and ‘MRBAS’) processes the following personal information items.<Use for Marketing and Advertising> -Requested items: Email, home address, password question and answer, password, login ID, access log –optional items.

  3. 6. Destruction of personal information <MRBAS Co., Ltd.> (‘MRBAS’), in principle, destroys personal information without delay when the purpose of processing personal information is achieved. The procedure, deadline and method of destruction are as follows.

    -The information entered by the user of the destruction procedure is transferred to a separate DB after the purpose is achieved (separate documents in the case of paper) and stored for a certain period of time according to internal policies and other related laws or immediately destroyed. At this time, personal information transferred to the DB will not be used for any other purpose except by law.

    -If the retention period of personal information is expired or has elapsed, within 5 days from the end date of the retention period, the personal information such as achievement of the purpose of processing personal information, abolition of the service, and termination of business are unnecessary. When it does, the personal information is destroyed within 5 days from the date when it is deemed unnecessary.

    -Destruction Method Electronic file type information uses a technical method that cannot reproduce the record.

  4. 7. Matters concerning the installation, operation and rejection of automatic collection of personal information.

    1.  In order to provide personalized service MRBAS Co., Ltd. uses ‘cookie’ that store and retrieve usage information from time to time.

    2. Cookie are a small amount of information sent by the server (http) used to operate the website to the user’s computer browser, and are also stored on the hard disk of the user’s PC computer. A. Purpose of use of cookie: it is used to provide optimized information to users by grasping visits and usage patterns, popular search terms, and secure access to each service and websites visited by users. B. Cookie Installation/ Operation and Rejection: you can refuse to save cookie by setting options in Tools>Internet Options>Privacy Menu at the top of your web browser. C. If you refuse to save cookie, you may have difficulty using customized services.

  5. 8. Personal Information Protection Officer

    1.  MRBAS Co., Ltd. (‘’ and ‘MRBAS’) is responsible for the handling of personal information and handles complaints and damages by information subject regarding personal information processing. For the sake of this, we have designated the person in charge of personal information protection as follows.


      Personal Information Protection Officer

      Name: Hyun Geum Lee

      Position: Deputy General Manager

      Contact: +82-70-4693-4818


  • It leads to the personal information protection department.


Personal Information Protection Department

Department: Software

Name: Hyun Geum Lee

Contact: +82-70-4693-4818


    1.  The information subject can provide all personal information protection inquiries, complaints, damage relief, etc. that occurred while using the service (or business) of MRBAS Co., Ltd. (‘’ and ‘MRBAS’). You can contact the person in charge of personal information protection and the department in charge. MRBAS Co., Ltd. (‘’ and ‘MRBAS’) will answer and process inquiries from information subjects without delay.

  1. 9. Change of personal information processing policy

    This personal information processing policy is applied from the effective date, and if there are additions, deletions, and corrections of changes in accordance with laws and policies, the notice will be notified through 7 days prior to the implementation of the changes.

  2. 10. Measures to secure the safety of personal information <MRBAS Co., Ltd.> (‘MRBAS’) takes the technical, administrative, and physical measures necessary to secure safety in accordance with Article 29 of the Personal Information Protection Act.

  1. Encryption of personal information, User’s personal information is stored and managed by password encryption, so only the user can know and important data uses separate security functions such as encrypting file and transmission data or using the file lock function.

  2. Restrict access to personal information, we take necessary measures to control access to personal information through granting, changing, and canceling access rights to the database system that processes personal information. Unauthorized access is controlled.