Back to Home

Layernode Privacy Policy

Article 1 (Purpose)

Layernode (hereinafter referred to as "Company") establishes and discloses this Privacy Policy in accordance with Article 30 of the Personal Information Protection Act to protect the personal information of data subjects and to promptly and smoothly handle related grievances.

Article 2 (Purpose of Processing Personal Information)

The Company processes personal information for the following purposes. Personal information being processed will not be used for purposes other than the following, and if the purpose of use changes, necessary measures will be taken, such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.

1. Member Registration and Management

Personal information is processed for the purposes of confirming membership registration intent, identification and authentication for membership service provision, maintaining and managing membership qualifications, preventing fraudulent use of services, and various notifications.

2. Service Provision

Personal information is processed for the purposes of providing VPS hosting services, DDoS protection services, content provision, customized service provision, identity verification, payment and settlement.

3. Grievance Handling

Personal information is processed for the purposes of verifying the identity of complainants, confirming complaints, contacting and notifying for fact-finding, and notifying processing results.

Article 3 (Processing and Retention Period of Personal Information)

① The Company processes and retains personal information within the retention and use period prescribed by law or the retention and use period agreed upon when collecting personal information from data subjects.

② The processing and retention period for each type of personal information is as follows:

1. Member Registration and Management

Until the service use contract or membership registration is terminated. However, in the following cases, until the reason ends:

  • When investigations or inquiries due to violation of relevant laws are in progress, until the investigation or inquiry is completed
  • When credit-debt relationships remain due to service use, until the credit-debt relationship is settled

2. E-commerce Related Records

  • Records on contracts or withdrawal of subscription: 5 years (E-commerce Act)
  • Records on payment and supply of goods: 5 years (E-commerce Act)
  • Records on consumer complaints or dispute resolution: 3 years (E-commerce Act)
  • Records on indication and advertisement: 6 months (E-commerce Act)

3. Communication Verification Data

  • Login records: 3 months (Protection of Communications Secrets Act)

Article 4 (Personal Information Items Processed)

The Company processes the following personal information items:

1. Member Registration and Service Use

  • Required items: Name, date of birth, gender, mobile phone number, email address
  • Optional items: Address, payment information

2. Information Automatically Generated and Collected During Service Use

  • IP address, cookies, MAC address, service usage records, visit records, fraudulent use records, etc.

Article 5 (Provision of Personal Information to Third Parties)

① The Company processes personal information of data subjects only within the scope specified in Article 1 (Purpose of Processing Personal Information), and provides personal information to third parties only when it falls under Articles 17 and 18 of the Personal Information Protection Act, such as consent of the data subject or special provisions of law.

② In principle, the Company does not provide personal information of data subjects to third parties. However, exceptions are made in the following cases:

  • When the data subject has consented in advance
  • When there is a request from investigative agencies in accordance with procedures and methods prescribed by law, based on legal provisions or for investigative purposes

Article 6 (Consignment of Personal Information Processing)

① The Company consigns personal information processing tasks as follows for smooth personal information business processing.

② When entering into consignment contracts, the Company specifies in documents such as contracts matters concerning prohibition of personal information processing other than the purpose of performing consigned tasks, technical and managerial protective measures, restrictions on re-consignment, management and supervision of trustees, and liability for damages in accordance with Article 26 of the Personal Information Protection Act, and supervises whether trustees process personal information safely.

③ If the content of consigned tasks or trustees change, it will be disclosed without delay through this Privacy Policy.

Article 7 (Rights, Obligations, and Exercise Methods of Data Subjects)

① Data subjects may exercise the following personal information protection rights against the Company at any time:

  • Request to view personal information
  • Request for correction if there are errors
  • Request for deletion
  • Request to suspend processing

② The exercise of rights under Paragraph 1 can be made to the Company in writing, by phone, email, fax, etc., and the Company will take action without delay.

③ If a data subject requests correction or deletion of errors in personal information, the Company will not use or provide the personal information until the correction or deletion is completed.

Article 8 (Destruction of Personal Information)

① The Company destroys personal information without delay when personal information becomes unnecessary, such as the expiration of the retention period or achievement of the processing purpose.

② The procedures and methods for destroying personal information are as follows:

1. Destruction Procedure

The Company selects personal information for which reasons for destruction have occurred, and destroys personal information after obtaining approval from the Company's personal information protection manager.

2. Destruction Method

  • Personal information recorded and stored in electronic file format is destroyed using methods such as low-level formatting so that records cannot be reproduced.
  • Personal information recorded and stored on paper documents is destroyed by shredding or incineration.

Article 9 (Security Measures to Ensure Personal Information Safety)

The Company takes the following measures to ensure the safety of personal information:

  • Managerial measures: Establishment and implementation of internal management plans, regular employee training, etc.
  • Technical measures: Access authority management for personal information processing systems, installation of access control systems, encryption of unique identification information, installation of security programs
  • Physical measures: Access control to computer rooms, data storage rooms, etc.

Article 10 (Personal Information Protection Manager)

① The Company designates a personal information protection manager as follows to take overall responsibility for matters related to personal information processing and to handle complaints and remedy damages of data subjects related to personal information processing.

Personal Information Protection Manager

  • Name: Woojin Roh
  • Position: Representative
  • Contact: contact@hidelayer.net

② Data subjects can inquire with the personal information protection manager and relevant department regarding all personal information protection-related inquiries, complaint handling, damage relief, etc. that occur while using the Company's services. The Company will respond to and process inquiries from data subjects without delay.

Article 11 (Request for Personal Information Access)

Data subjects can make requests for access to personal information in accordance with Article 35 of the Personal Information Protection Act to the department below. The Company will strive to process requests for personal information access from data subjects promptly.

Department for Receiving and Processing Personal Information Access Requests

  • Department: Customer Support Team
  • Person in Charge: Woojin Roh
  • Contact: contact@hidelayer.net

Article 12 (Remedies for Rights Infringement)

Data subjects can inquire about damage relief and consultation regarding personal information infringement at the following institutions:

Personal Information Infringement Report Center (Operated by Korea Internet & Security Agency)

  • Responsibilities: Reporting personal information infringement facts, consultation requests
  • Website: privacy.kisa.or.kr
  • Phone: 118 (without area code)
  • Address: 3F Personal Information Infringement Report Center, 9, Jinheung-gil, Naju-si, Jeollanam-do, 58324

Personal Information Dispute Mediation Committee

  • Responsibilities: Application for personal information dispute mediation, collective dispute mediation (civil resolution)
  • Website: www.kopico.go.kr
  • Phone: 1833-6972 (without area code)
  • Address: 4F Government Seoul Complex, 209, Sejong-daero, Jongno-gu, Seoul, 03171

Supreme Prosecutors' Office Cyber Crime Investigation Unit

  • Phone: 02-3480-3573
  • Website: www.spo.go.kr

National Police Agency Cyber Safety Bureau

  • Phone: 182 (without area code)
  • Website: cyberbureau.police.go.kr

Article 13 (Changes to Privacy Policy)

① This Privacy Policy will be effective from January 1, 2024.

② Previous privacy policies can be found below.

Business Information

Business Name: Layernode

Representative: Woojin Roh

Business Location: 30, Pogok-ro 326beon-gil, Pogok-eup, Cheoin-gu, Yongin-si, Gyeonggi-do, Republic of Korea

Business Registration Number: 404-19-02158

Email: contact@hidelayer.net