YIDO Estate Co., Ltd. Privacy Policy

YIDO Estate Co., Ltd. (hereinafter 'the Company') places great importance on users' personal information and complies with relevant laws including the Personal Information Protection Act.
This Privacy Policy provides guidance on the purpose, items, retention period, and user rights regarding personal information collected through the website (hereinafter 'Service') operated by the Company.
This policy may be revised at any time due to changes in laws and internal policies, and any changes will be announced in advance through the website notice board.

1. Purpose of Processing Personal Information

The Company processes personal information for the following purposes. Personal information processed will not be used for purposes other than those listed below, and prior consent will be obtained if the purpose of use changes.

  1. Inquiry Reception and Processing
    Personal information is processed for the purpose of receiving, confirming, and responding to inquiries received through the website Contact Us (online inquiry).
2. Personal Information Collection Items, Methods, and Retention Period
  1. Collection Items
    • Required: Name, Email address, Phone number, Subject, Inquiry content
    • Optional: Company name
  2. Collection Method
    • Directly entered and submitted by users through the website Contact Us online inquiry form
  3. Storage Location and Retention Period
    • Collected personal information is stored on YIDO Estate Co., Ltd.'s internal servers.
    • Information will be destroyed without delay after 1 year from the time of inquiry reception.
    • However, if there is an obligation to preserve under relevant laws, the information will be retained for the period stipulated by such laws.
Collection Purpose Collection Items Retention Period
Inquiry Reception and Processing Name, Email, Phone, Subject, Inquiry content (Required)
Company name (Optional)		 1 Year
3. Provision of Personal Information to Third Parties

In principle, the Company processes users' personal information only within the scope specified in Article 1 and does not provide it to third parties without the user's prior consent.

However, the following cases are exceptions.

  • When the user has given prior consent
  • When required by law or when a law enforcement agency requests information in accordance with procedures and methods prescribed by law for investigative purposes
4. Rights and Obligations of Data Subjects and How to Exercise Them
  1. Users may exercise the following personal information protection rights against the Company at any time.
    • Request to access personal information
    • Request for correction if there are errors
    • Request for deletion
    • Request to suspend processing
  2. The rights under Paragraph 1 may be exercised via email to the Personal Information Protection Officer, and the Company will take action without delay.
  3. If a data subject requests correction or deletion of personal information errors, the personal information will not be used or provided until processing is complete.
  4. Rights may also be exercised through a legal representative or authorized agent, in which case a power of attorney in accordance with Form No. 11 of the Enforcement Rules of the Personal Information Protection Act must be submitted.
5. Destruction of Personal Information

The Company destroys personal information without delay when the purpose of processing has been achieved.

  1. Destruction Procedure
    Information entered by users is stored for a certain period according to internal policies and relevant laws after the purpose has been achieved, and then destroyed. Destroyed personal information will not be used for other purposes except as required by law.
  2. Destruction Deadline
    When the retention period has elapsed, destruction occurs within 5 days from the end date; when the information becomes unnecessary due to achievement of the processing purpose, destruction occurs within 5 days from the date of recognition.
  3. Destruction Method
    Electronic files are deleted using technical methods that prevent recovery, and paper printouts are destroyed by shredding or incineration.
6. Measures to Ensure Safety of Personal Information

The Company implements the following technical, administrative, and physical measures necessary to ensure safety in accordance with Article 29 of the Personal Information Protection Act.

  1. Minimization of Personal Information Processing Staff
    Personal information processing staff are designated and minimized for management.
  2. Regular Internal Audits
    Regular internal audits (once per half-year) are conducted to ensure the safety of personal information processing.
  3. Establishment and Implementation of Internal Management Plans
    Internal management plans for the safe processing of personal information are established and implemented.
  4. Encryption of Personal Information
    Important data uses separate security functions such as file and transmission data encryption and file locking.
  5. Technical Measures Against Hacking
    Security programs are installed and updated, systems are installed in controlled access areas, and technical and physical monitoring and blocking measures are taken.
  6. Restriction of Access to Personal Information
    External unauthorized access is controlled through granting, changing, and revoking database access rights and intrusion prevention systems.
  7. Control of Unauthorized Access
    Physical locations for storing personal information are separately designated, and access control procedures are established and operated.
  8. Preservation of Access Records and Prevention of Forgery/Falsification
    Security features are in place to preserve access records of personal information processing systems and to prevent forgery or falsification.
7. Personal Information Protection Officer

The Company has designated a Personal Information Protection Officer as follows to handle personal information protection and related complaints.

Category Name Position Contact (Email)
Personal Information Protection Officer Sunhee Hwang Director privacy@yidoestate.com

※ You may submit requests for personal information access, correction, deletion, and suspension of processing to the above contact.

8. Changes to the Privacy Policy

This Privacy Policy applies from the effective date. If there are additions, deletions, or corrections due to changes in laws and policies, notice will be given through the website notice board at least 7 days before the changes take effect.

9. Remedies for Infringement of Rights

To receive relief for personal information infringement, you may apply for dispute resolution or consultation at the following organizations.

  1. Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (www.kopico.go.kr)
  2. Personal Information Infringement Report Center (Korea Internet & Security Agency): (without area code) 118 (privacy.kisa.or.kr)
  3. Supreme Prosecutors' Office Cyber Investigation Division: (without area code) 1301 (www.spo.go.kr)
  4. National Police Agency Cyber Investigation Bureau: (without area code) 182 (ecrm.cyber.go.kr)

Effective Date: May 01, 2026