BUYKOREA collects, holds, and processes all personal information handled in compliance with relevant laws, such as 「Personal Information Protection Act」, and establishes and discloses personal information processing policies as follows to protect the personal information, rights and interests of information subjects.
|No.||Name of personal information file||Operating grounds||Purpose of management|
|1||Member for buyKOREA overseas buyers||Owner of information’s consent||Supporting export of domestic companies and providing product information|
|2||KOTRA Integrated Member||Owner of information’s consent||Providing service, handling complaints, etc|
|No.||Name of personal information file||Operating grounds||Retention Period|
|1||Member for buyKOREA overseas buyers||Owner of information’s consent||Until the membership withdrawal|
|2||KOTRA Integrated Member||Owner of information’s consent||Until the membership withdrawal|
buyKOREA processes the information subject's personal information only to the extent specified in Article 1 (the purpose of processing personal information) and does not process it beyond its original purpose or provide it to third parties without prior consent from the entity unless.
|No.||Entrusted affairs||Entrusted company name||Telephone number||Working Hour||check result of trustee management status|
|1||KOTRA information system operation and maintenance||SGA||070-7308-1004||09:00~18:00||appropriate|
|2||System Maintenance||GEISTKOREA Co., Ltd.||02-833-1650||09:00~18:00||appropriate|
|3||Operating customer service center||TranscosmosKOREA||02-790-8106||09:00~18:00||appropriate|
buyKOREA manages following personal information items.
|No.||Name of personal information file||Personal information items recorded in the personal information file|
|1||Member for buyKOREA overseas buyers||
|2||KOTRA Integrated Member||
Unnecessary personal information and personal information files are managed under the responsibilities of personal information manager according to the internal policy procedure as follows.
Personal information that has passed the retention period will be destroyed without delay from the end date
When the personal information file becomes unnecessary such as the purpose of personal information file management being achieved, abolition of service, or the end of the business, the personal information file is destroyed without delay from the date when personal information management is recognized as unnecessary.
buyKOREA, pursuant to Article 29 of the 「Personal Information Protection Acttt」, takes the technical, administrative and physical measures necessary for ensuring safety as follows.
|Division||Name of department||Name||Contact point|
|buyKOREA personal information
|Trade-Investment Support Infrastructure||Jaewon Lyu
Executive Vice President
for Trade-Investment Support Infrastructure
|Tel. : 02-3460-7400|
|buyKOREA general customer informationM
each sector manager
|Digital Trade & Consumer Goods Department||Goh SangYoung
Director General Digital
Trade & Consumer Goods Dept
|Tel. : 02-3460-3340|
|buyKOREA general customer information
|E-commerce Export Team||Jinah Heo
|Tel. : 02-3460-7577 / Fax : 02-3460-7933
email : firstname.lastname@example.org
**SME stands for small and medium sized enterprises
The owner of information can inquire damage relief, consultation, and others about infringement of personal information to the following institutions.
(As the following institutions are separate from KOTRA, when you are not satisfied with KOTRA's own personal information complaints handling, damage relief results, or need further assistance, please contact them.)
In addition, a person who is infringed the rights or interests due to administrative disposition or omission by the head of public institution for the request of owner of information on personal information correction, deletion or suspension, etc, can request the administrative appeals as provided by the Administrative Appeals ActRefer to the telephone number of the Central Administrative Appeals Commission (www.simpan.go.kr)
buyKOREA can use cookie which stores users information and detect them at any time (COOKIE, automatic collection device of personal information such as internet access information file, etc). A cookie, as a small amount of information that a server to be used to run an institution's website sends to a user's browser, is also stored on the user's computer's hard disk. When a user accesses a website, the institution’s computer can read the contents of the cookie on the user's browser and detect user’s additional information in your computer, and can provide the service without further input such as the name of the contact, and others. Cookies identify your computer but do not personally identify yourself. In addition, the user has the option of installing cookies. As a result, by that the user can install the options in the web browser, the user accept all cookies, or check each time when a cookie is saved, or refuse to save all cookies. However, when you refuse to install cookies, you might turn to be uncomfortable with using the web and to have difficulty in using some services that require login.(Example of how to install)
The Korea Trade-Investment Promotion Agency (“KOTRA”, “We”, “Our”, “Us”) is committed to respecting the privacy of users and providing safe and secure user experience.
Below, you will find information on how we use your personal data, for which purposes your personal data is used, with whom it is shared and what control and information rights you may have.
A controller is responsible for the collection and processing of your personal data in accordance with the General Data Protection Regulation (GDPR) as well as further applicable data protection laws. Please find your controller and its contact information here, depending on where you are.
We have appointed a Data Protection Officer in accordance with Art. 37 of the GDPR. If there is anything you are unsure about regarding this Policy or our data protection of your personal data, feel free to contact our Data Protection Officer by emailing email@example.com at any time.
We generally collect your personal data directly from you, when, for example, you submit an inquiry, attend events or seminars, use or engage in our services or provide us with your contacts. With your consent, we may sign up your membership and register buying offers on your behalf.
From time to time, we may gain access to your business contact details via recognised business data providers or an official website of your organisation. We may also receive your contact details through our primary contacts at your organisation if they think you may benefit from our services. As we work closely with other organisations, public agencies or governments of South Korea, we may also receive information about you from them.
When you visit our website, computer and technology information (e.g. browser type, IP address, unique device ID, etc.) is automatically collected via your browsers.
We do not collect more information than we need to fulfil our purposes mentioned in this Policy and will not retain it for longer than is necessary. The types of personal data we collect and share depend on the nature of your relationship with us and the requirements of applicable laws.
As KOTRA is a public agency of South Korea, we process personal data for a number of different purposes that arise from our missions to contribute to the development of the national economy through global business support activities.
We may process your personal data for the following purposes:
For visitors to our website
The information collected automatically when you visit our website will be processed for the following purposes:
The provision of your personal data will generally be voluntary and there is no statutory nor contractual obligation to provide your personal data. We generally do not contractually require the provision of your personal data but note that in any event, non-provision of personal data might exclude you from using some of our services or parts thereof.
Our services are not intended for use by children. Under applicable national laws, we do not knowingly collect personal data from users who are considered children. According to our User Agreement, children are not permitted to use our services.
Where KOTRA is processing personal data for the performance of its functions, the primary legal bases under the GDPR are as follows:
We do not sell or disclose your personal data to third parties for their marketing or advertising purposes without your consent. We only disclose your personal data when it is necessary for the purposes mentioned in this Policy or when we have obtained your consent.
Third party service providers may access to your personal data on a need to know basis for the purpose of providing services on behalf of us. They cannot do anything with your personal data without our permission. They will not share your personal data with any organisation apart from us, nor will they keep your personal data for longer than the period we instruct.
When necessary, we share your personal data with the following the data processors and recipients as far as necessary for the purposes described in this Policy:
As KOTRA is a public agency of South Korea, your personal data may be transferred to South Korea for the purposes mentioned in this Policy. As South Korea has not sought nor received “adequacy decision” from the European Commission, we use Standard Contractual Clauses adopted by the European Commission to provide appropriate safeguards for the transfer of your personal data.
Given the nature of KOTRA’s missions and functions, we may also disclose your personal data to recipients overseas. To ensure an adequate level of data protection when transferring your personal data from the European Economic Area (EEA) to third countries (outside the EEA), we will only transfer your personal data on the basis of an adequacy decision or appropriate safeguards such as Standard Contractual Clauses adopted by the European Commission. Upon request, we will provide you with a copy of the relevant information.
If you want to know more about cookies, please visit www.aboutcookies.org or www.allaboutcookies.org.
We have implemented technical and organisational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorised access or disclosure of personal data. We restrict access to your personal data to those who need to know that information to provide benefits or services to you. In addition, we train our employees to help them be well aware of risks associated with data security and confidentiality.
We strive to keep our processing activities with respect to your personal data as limited as possible. Your personal data will be retained only for as long as we need it to fulfil the purpose for which we have collected it and, if applicable, as long as required by statutory retention requirements. In case of consent, your personal data will be at the latest deleted without undue delay after the withdrawal of such consent.
You have the rights, at any time:
If you would like to exercise any of these rights, you can contact the Data Protection Officer or Data Protection Manager responsible for your region. You can find the contact information of our Data Protection Managers and Data Protection Officer here.
No cost will be charged for any response to acceptable requests. If for some reasons the request is denied, we will provide an explanation as to why the request has been denied.
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes for the period we hold your data.
We take any complaints we receive from you very seriously. We encourage people to bring it to our attention if they think that our collection or use of information is unfair, misleading or inappropriate. We also welcome any suggestions for improving our procedures.
We ask that you first submit any such complaints directly to the Data Protection Officer or Data Protection Manager in your country. If you aren't satisfied with our response or have concerns about how we process your personal data, you have the right to lodge a complaint with the appropriate data protection authority in your region.
You may find links to other websites on our websites. We recommend that you read the privacy policies on the other websites you visit. This Policy does not cover how other websites collect and process personal data.
|Austria||KOTRA Vienna||Address||Mariahilferstrasse 77-79/1/3, (Generali Center, 3rd Fl.) A-1060, Vienna, Austria|
|Data Protection Manager||dpm_Austria@kotra.or.kr|
|Belgium||KOTRA Brussels||Address||Rond-point Schuman 11, 1040 Brussels, Belgium|
|Data Protection Manager||dpm_Belgium@kotra.or.kr|
|Bulgaria||KOTRA Sofia||Address||Floor 1, Interpred-WTC, 36 Dragan Tsankov Blvd., sofia 1057, Bulgaria|
|Data Protection Managerfirstname.lastname@example.org|
|Croatia||KOTRA Zagreb||Address||Radnička cesta 52/Ⅷ, 10000, Zagreb, Croatia|
|Data Protection Manager||dpm_Croatia@kotra.or.kr|
|Czech Republic||KOTRA Praha||Address||Panorama Business Center, Skretova 12, 120 00, Praha 2, Czech Republic|
|Data Protection Manager||dpm_Czech@kotra.or.kr|
|Denmark||KOTRA Copenhagen||Address||Holbergsgade 14, 3rd Floor DK-1057, Copenhagen, Denmark|
|Data Protection Manageremail@example.com|
|Finland||KOTRA Helsinki||Address||Salomonkatu 17 A, 3 Krs D, 00100 Helsinki, Finland|
|Data Protection Managerfirstname.lastname@example.org|
|France||KOTRA Paris||Address||19 Avenue de l'Opéra, 75001 Paris, France|
|Telephone||(33-1) 55 35 88 88|
|Data Protection Manager||dpm_France@kotra.or.kr|
|Germany (Frankfurt)||KOTRA Frankfurt||Address||MesseTurm 33.OG, Friedrich-Ebert-Anlage 49, 60308 Frankfurt am Main, Germany|
|Data Protection Manageremail@example.com|
|Germany (Hamburg)||KOTRA Hamburg||Address||Axel-Springer-Platz 3, Haus B, 20355 Hamburg, Germany|
|Data Protection Managerfirstname.lastname@example.org|
|Germany (München)||KOTRA München||Address||Tal 12, D-80331 Munich, Germany|
|Data Protection Manageremail@example.com|
|Greece||KOTRA Athens||Address||6th Fl., 5 Chatzigianni Mexi Str., GR-11528, Athens, Greece|
|Data Protection Manager||dpm_Greece@kotra.or.kr|
|Hungary||KOTRA Budapest||Address||H1123, 3F, KOTRA, Alkotas U. 50, Budapest, Hungary|
|Data Protection Manager||dpm_Hungary@kotra.or.kr|
|Italy||KOTRA Milano||Address||Via Larga 2 - 20122, Milano, Italy|
|Data Protection Managerfirstname.lastname@example.org|
|Poland||KOTRA Warsaw||Address||KOTRA, 21th Fl. Warsaw Financial Center, Emilii Plater 53, 00-113, Warsaw, Poland|
|Data Protection Manageremail@example.com|
|Romania||KOTRA Bucuresti||Address||Baneasa Business & Technology Park, Soseaua Bucuresti – Ploiesti nr. 42-44, Sector 1, Romania Cladirea A, Aripa A1, Et. 1|
|Data Protection Managerfirstname.lastname@example.org|
|Slovakia||KOTRA Bratislava||Address||2nd Floor, Cintorinska 2333/9, 811 08 Bratislava, Slovak Republic|
|Telephone||(421)2 2129 34 51|
|Data Protection Manager||dpm_Slovakia@kotra.or.kr|
|Spain||KOTRA Madrid||Address||Paseo de la Castellana 95, Torre Europa 95, Planta 9 B, 28046 Madrid, Spain|
|Data Protection Manager||dpm_Spain@kotra.or.kr|
|Sweden||KOTRA Stockholm||Address||KOTRA, Svardvagen 11C, SE-182 33 Danderyd, Sweden|
|Data Protection Manageremail@example.com|
|The Netherlands||KOTRA Amsterdam||Address||WTC Amsterdam, C tower 12F Strawinskylaan 1253, 1077XX Amsterdam, The Netherlands|
|Data Protection Managerfirstname.lastname@example.org|
|All other countries within the EU||KOTRA EUROPE HEAD OFFICE||Address||MesseTurm 33.OG, Friedrich-Ebert-Anlage 49, 60308 Frankfurt am Main, Germany|
|Data Protection Manageremail@example.com|
|All other countries outside the EU||KOTRA Headquarters in Korea||Address||13, Heolleung-ro, Seocho-gu, Seoul, Korea|
|Data Protection Manager||dpm_HQ@kotra.or.kr|