메타.개인정보처리방침.제목

Inflab (hereinafter referred to as "the Company") values personal information and is committed to protecting it. This Privacy Policy informs users about how the personal information they provide is used and what measures are taken to ensure its protection. This Privacy Policy may be changed from time to time due to changes in government laws and guidelines or internal policy changes of the Company. In such cases, the Company will notify users of the revised Privacy Policy on the service pages provided by the Company.


The privacy policy of "Company" includes the following contents:

  1. Purpose of collection and use of personal information, items, and collection methods
  2. Provision of personal information and outsourcing of processing
  3. Disadvantages of refusal to collect and use personal information
  4. Retention and use period of personal information
  5. Procedures and methods for destruction of personal information
  6. Rights of members and how to exercise them
  7. Installation/operation and refusal of automatic collection devices for personal information
  8. Technical/managerial measures for personal information protection
  9. Name, contact information, and department of the person in charge of personal information management
  10. Remedies for infringement of rights
  11. Obligation to notify
  12. Supplementary provisions

1. Purpose of Collection and Use of Personal Information, Items, and Collection Methods

  1. “Personal information” refers to information about a living individual that can identify that individual (including information that, when combined with other information, can easily identify the individual).
  2. Company" utilizes the collected personal information for the following purposes:
    1. Membership Registration and Communication: Member identification, prevention of fraudulent registrations, confirmation of membership intention, age verification, grievance consultation and handling, notification of announcements, restrictions on members who violate terms, actions against behaviors that hinder the smooth operation of services, confirmation of the existence of reasons for membership rejection, record retention for dispute resolution, and handling complaints.
    2. Providing Content and Services: Providing job application and recruitment proposal services for job seekers, providing various customized services, cash payments, service use and settlement of sales amounts for individuals and corporate users, authentication during financial transactions, and financial services.
    3. Settlement of Fees for Paid Services and Refunds
    4. Service Improvement and Statistical Surveys: Developing new services, providing services and advertisements according to statistical characteristics, verifying service effectiveness, identifying access frequency, and analyzing service usage statistics to improve service environments.
    5. Event Information and Participation Opportunities: If separate consent is obtained from members, providing event information, promotional information, and participation opportunities.
    6. Regarding AI Application: Through artificial intelligence technology, we collect content created by members during their use of the service (including but not limited to posts, documents, or images) to develop and provide new services, features, and content.
  3. "Company" collects the following personal information for the aforementioned purposes:
    1. Individual and Course Members
      • During Integrated Membership Registration:
        • Mandatory: Email, password, personal identification value (DI, CI)
      • During Resume/Application Writing:
        • Mandatory: Name, mobile phone number, email
        • Optional: Resume, cover letter, educational background, work experience, qualifications, employment preference (e.g., veteran status, disability, military service), and other information the member writes or records
      • During Payment for Paid Services:
        • Mandatory: Name, email, mobile phone number, personal identification value (DI, CI), and other payment-related information
        • Automatically generated information during the service use process:
          • IP address, MAC address, cookies, session, visit date and time, service usage records, negative (fraudulent) usage records, device information (OS, device model, mobile carrier information, hardware ID, basic statistics regarding service usage), application installation and usage history
          • Access to the contact function of the member's mobile phone device is possible.
          • For members using iOS devices, access to UUID for user identification is possible.
          • Access to the camera, photo album, microphone function (iOS), or storage (photos/media/files) (Android) of the member's mobile phone device is possible.
      • During Instructor Application:
        • Mandatory: Name, email, contact information (mobile phone number, etc.), desired field, self-introduction
        • Optional: Website address, etc.
      • During Instructor Registration:
        • (i) For members who are not registered as businesses:
          • Mandatory: Name, mobile phone number, address, and resident registration number
        • (ii) For individual and corporate businesses:
          • Mandatory: Company name (trade name), business registration number, representative name, company phone number, address
      • Additional Information Collected During Instructor Registration:
        • For members who are not registered as businesses: resident registration number, settlement account information (bank name, account number, account holder)
        • For individual and corporate businesses: communication sales business registration number, income deposit account information (bank name, account number, account holder)
      • For Simple Certification and Email Verification of Career and School (Affiliation):
        • Mandatory: Name, date of birth, mobile phone number
    2. Corporate Members
      • During Membership Registration:
        • Mandatory: Name, email, password, position or affiliation, mobile phone number, personal identification value (DI, CI)
      • During Company Information Registration:
        • Mandatory: Company name, business registration number, industry, company address, company introduction, number of employees, annual sales
        • Optional: Website address, accumulated investment amount, etc.
      • During Application for Paid Service Use:
        • Mandatory: Tax invoice issuance information and other financial identification information
    3. Collection Method: Homepage (membership registration, bulletin board, etc.), mobile application, fax, phone, customer center inquiries, event applications, automatic collection through generation information collection tools.
  4. "Company" collects personal information only after obtaining the user's consent and does not collect information that may infringe upon the user's basic human rights, such as race, origin, residence, ideology, political inclination, criminal records, and health status, unless with the user's consent or as required by law.
  5. The company protects members' personal information rights throughout the entire process of AI technology development, application, and learning, and implements procedures and measures to minimize the misuse of personal information.

2. Provision of Personal Information and Outsourcing of Processing

  1. Provision of Personal Information

    "Company" uses users' personal information only within the scope notified in "1. Purpose of collection and use of personal information, items, and collection methods" and, in principle, does not provide personal information to others. However, the following cases are exceptions:

    1. If the user has agreed in advance
      1. For corporate members applying for job postings, personal information provided during resume/application writing will be provided to corporate members for the purpose of reviewing hiring and conducting hiring procedures until the user withdraws consent.
      2. If the user allows access to the resume, personal information provided during resume/application writing will be provided to corporate members for the purpose of reviewing hiring and conducting hiring procedures until the user withdraws consent.
    2. If required by law or requested by investigative agencies in accordance with the procedures and methods specified by law for investigative purposes.
  2. Outsourcing of Personal Information Processing

    "Company" outsources personal information for smooth business operations and has stipulated necessary matters to ensure safe management of personal information in accordance with the relevant laws. The institutions and tasks for outsourcing personal information processing are as follows. The outsourcing period lasts until the member's withdrawal or the termination of the outsourcing contract.

    1. Domestic Outsourcing Companies
      Provider Purpose of Provision
      NHN Cloud Co., Ltd. KakaoTalk notification service and SMS sending
      JTNET, Naver Financial, Kakao Pay, Toss Payments Providing payment services (mobile phone, non-cash deposit, bank transfer, credit card, and other payment methods)
      Amazon Web Services Korea Infrastructure management for service provision
      OK Message Sending marketing SMS
      Modusign Contract signing with instructors and corporate clients
      Channel Corporation Real-time customer consultation and guidance
      Post Office Delivery of products and prizes
      Kakao Corporation Sending marketing notification messages via Kakao Channel
      Hectodata Co., Ltd. • Using authentication information of credit information subjects to mediate personal (credit) information
      • Request/response data storage using authentication information for API service quality improvement and business response (data will be deleted upon termination of the outsourcing contract)
      • Handling requests for the access, correction, deletion, and processing suspension of personal information from information subjects
      • Outsourced information: personal (credit) information, all request/response data, corporate information
      • Outsourcing period: until the termination of the outsourcing contract
      Korea Port One Co., Ltd. Instructors Settlement in Progress
    2. Re-consigned Company
      Provider Purpose of Provision
      Link Hub Co., Ltd. Tax invoice issuance, Business status inquiry, Account holder verification
      Hyphen Corporation Co., Ltd. Remittance agency service, Account holder verification
    3. Overseas Outsourcing Companies
      Provider Contact Purpose of Transfer Transferred Personal Information Items Transferred Country Retention Period Transfer Method
      Mailchimp privacy@mailchimp.com Sending marketing emails Email USA Retained during the user's service subscription period Transferred via network at the time of service use
      Amazon Web Services Inc. (AWS Server) aws-korea-privacy@amazon.com Using cloud servers for data storage Service usage records or collected personal information USA, Japan, etc. Retained during the user's service subscription period Transferred via network at the time of service use
      Amazon Web Services Inc. (AWS Pinpoint) aws-korea-privacy@amazon.com Sending marketing emails and notification emails Email USA, Japan, etc. Retained during the user's service subscription period Transferred via network at the time of service use
      MOIN Co., Ltd. bizplus_support@themoin.com Overseas Account Settlement Processing (Sender/Recipient) Name, Address, Country, Bank, Account Number, Phone Number Corresponding to User's Country such as the United States, New Zealand, etc. Up to 5 years from the transaction end date Transferred via network at the time of service use

3. Disadvantages of Refusal to Collect and Use Personal Information

  1. Members have the right to refuse consent to the collection and use of personal information. However, if members refuse consent, the following disadvantages may inevitably occur:
    1. If a member refuses the collection and use of personal information that the company intends to collect and use during the membership registration process (excluding collection and use for marketing, promotions, and advertising purposes), it will be impossible to register as a member or use the service.
    2. If a member refuses the collection and use of personal information or access to mobile phone functions during the service usage process, the provision of services and technical support for that member may be limited.

4. Retention and Use Period of Personal Information

  1. The "Company" may retain the information provided upon membership registration from the time of registration until the day the withdrawal request is received. However, to prepare for unwanted membership withdrawals due to identity theft, personal information will be retained for seven days after the withdrawal request. Additionally, to prevent disputes arising from improper use of the service, the personal information of members who have engaged in acts contrary to the terms of service and the policies of the "Company" will be retained for one year
  2. However, if it is necessary to retain information in accordance with relevant laws and regulations, the "Company" will retain member information for a certain period as stipulated by those laws
    1. f individual consent from the member has been obtained, the promised retention period will apply
    2. Basis for retention: Laws related to the protection of consumers in electronic commerce, the Telecommunications Privacy Protection Act, and other relevant laws
    3. Retention periods:
      1. Records related to contracts or withdrawal of offers (Electronic Commerce Act): five years
      2. Records related to payment and supply of goods and services (Electronic Commerce Act): five years
      3. Records related to consumer complaints or dispute resolution (Electronic Commerce Act): 3 years (however, if civil, criminal, or administrative procedures are ongoing, until those procedures are concluded)
      4. Records related to advertising (Electronic Commerce Act): six months
      5. Books and evidence related to all transactions specified by tax laws (Basic National Tax Act): five years
      6. Records related to electronic financial transactions (Electronic Financial Transactions Act): five years
      7. Access records (Telecommunications Privacy Protection Act): three months

5. Procedures and Methods for Destruction of Personal Information

  1. The destruction procedures and methods of personal information are as follows:
    1. Destruction Procedures: The information provided by the user is transferred to a separate database after the purpose of collection is achieved (separate document) and is destroyed after a certain period in accordance with the internal policy and other related regulations.
    2. Destruction Method: Information recorded in the form of electronic files is deleted using technical methods that prevent recovery. Printed information is destroyed using shredders or incineration.

6. Rights of Members and How to Exercise Them

  1. Members may request access to, modification of, and withdrawal from their personal information at any time. However, if a member withdraws consent for the collection, use, or provision of personal information necessary for membership registration and service provision, it may inevitably lead to the termination of membership and services, or they may be unable to receive services.
    1. The personal information of members held by the "Company"
    2. The history of the "Company" using or providing members' personal information to third parties
    3. The history of consent given to the "Company" for the collection, use, and provision of personal information
  2. Members can directly view and correct their information within the "Company" service, and may also request access or modification of personal information in writing, by phone, or by email to the designated personal information protection officer.
  3. Members can request the cessation of the processing of their personal information at any time.
  4. Members can withdraw their consent regarding the collection, use, and provision of personal information given at the time of membership registration (membership withdrawal) at any time.
  5. After the member has undergone identity verification in the "Company" service, they can withdraw consent (membership withdrawal) directly or contact the personal information protection officer in writing, by phone, or by email, and necessary actions, such as the destruction of the user's personal information, will be taken without delay. However, even in the case of withdrawal of consent (membership withdrawal), a minimum amount of information will be retained in accordance with relevant laws and regulations.

7. Installation/Operation and Refusal of Automatic Collection Devices for Personal Information

  1. "Company" uses cookies and sessions to store and retrieve member information. A "cookie" is a small data packet sent from the server to the user's web browser during website usage, which is stored on the member's computer hard drive. A session refers to the information that the server stores during the member's connection time. "Company" uses cookies and sessions for the following purposes.
  2. Cookies and sessions help maintain the user's settings, providing convenient usage, and allow the company to know the user's visit history, usage patterns, and areas of interest, which are used to provide optimized personalized services and as metrics for service improvement.
  3. Users have the option to accept cookies and can set their web browser options to allow all cookies, prompt confirmation each time a cookie is saved, or reject all cookie storage. However, refusing to install cookies may hinder access to some services that require login. Instructions for specifying cookie acceptance are as follows
    1. Chrome Web Browser > Go to the top right menu [Settings] > [Site Settings] > [Cookies] settings
    2. Safari Web Browser > Go to [Settings] > [Safari] > [Block Cookies] > settings
  4. Users do not have the option to install sessions, as a session is automatically created on the server when using services that require login.
  5. If members do not want the company to access the [contacts, camera and photo album, location services] on their smartphones or tablet PCs, the company provides technical means for members to block access (i.e., members can disable or deactivate access to these functions for the [**] app on their mobile phones).

8. Technical/Managerial Measures for Personal Information Protection

  1. Members' personal information is thoroughly protected by passwords, and only the member knows the password that matches the email address provided. Therefore, confirming and changing personal information can only be done by the member who knows the password.
  2. Members must not share their passwords with anyone. To ensure this, "Company" recommends logging out of online services and closing the web browser after using them on a PC.
  3. The technical/managerial measures and physical safeguards for personal information protection taken by "Company" are as follows
    1. Encryption devices for personal information that authenticate the user, such as passwords
    2. Installation, renewal, and inspection measures of antivirus software to prevent personal information breaches from computer viruses
    3. Access control measures using access permission settings and intrusion prevention systems for personal information systems
    4. Designation and training of personnel handling personal information, and ensuring safe management of personal information

9. Name, Contact Information, and Department of the Person in Charge of Personal Information Management

You can contact the person in charge of personal information protection and the customer center regarding any personal information protection-related complaints or issues that arise while using the company's services, and the company will promptly and sincerely respond to user inquiries.

  • Name: Lee Dong-wook
  • Department: Inflab
  • Contact Information: 070-4948-1181
  • E-mail: jojoldu@inflab.com

10. Remedies for Infringement of Rights

Users can apply for dispute resolution or consultation regarding personal information infringement through the Personal Information Dispute Mediation Committee, the Korea Internet & Security Agency's Personal Information Infringement Report Center, etc. For other reports or consultations regarding personal information infringement, please contact the following institutions.

  1. Personal Information Dispute Mediation Committee: (no area code) 1833-6972 (www.kopico.go.kr)
  2. Personal Information Infringement Report Center: (no area code) 118 (privacy.kisa.or.kr)
  3. Supreme Prosecutor's Office: (no area code) 1301 (www.spo.go.kr)
  4. National Police Agency: (no area code) 182 (ecrm.cyber.go.kr)

11. Obligation to Notify

If the personal information processing policy is changed, "Company" will notify users of the change and its effective date via the "Notices" section of the company's site. The amended personal information processing policy will take effect seven days after being posted.

12. Supplementary Provisions

This policy is effective from February 20, 2025.