Privacy Policy

The National Cultural Space Foundation (the “Foundation”) complies with the Personal Information Protection Act of the Republic of Korea and other applicable laws and regulations. The Foundation recognizes the importance of protecting personal information and is committed to safeguarding the rights and interests of data subjects.

This Privacy Policy explains the purposes for which personal information is processed, the categories of personal information collected, the retention period, and the measures implemented to ensure the security of such information.

Article 1 (Purpose of Processing Personal Information)

The Foundation processes personal information for the following purposes:

  1. 1) Operation of the website and provision of related services
  2. 2) Handling inquiries and civil complaints
  3. 3) Website administration, maintenance, and service improvement
  4. 4) Compliance with statutory obligations and administrative procedures

※ Personal information will not be used for purposes other than those stated above.

Article 2 (Categories of Personal Information Collected)

The Foundation processes the following categories of personal information:

  • Automatically Collected Information
    - IP address, access logs, cookies, browser information, Date and time of access.

※ The Foundation collects only the minimum amount of personal information necessary to fulfill the purposes described above.

Article 3 (Retention and Processing Period)

  1. 1) Personal information related to inquiries and complaints shall be retained for three (3) years following completion of processing.
  2. 2) Website access records (including IP addresses) shall be retained for six (6) months.
  3. 3) Where retention is required under applicable laws and regulations, personal information shall be retained for the period prescribed by such laws.

※ Upon expiration of the retention period, personal information shall be promptly destroyed in accordance with applicable procedures.

Article 4 (Provision of Personal Information to Third Parties)

The Foundation does not, in principle, provide personal information to third parties. Personal information may be provided to third parties only in the following circumstances:

  1. 1) Where prior consent has been obtained from the data subject
  2. 2) Where disclosure is required pursuant to applicable laws and regulations

Article 5 (Outsourcing of Personal Information Processing)

The Foundation does not outsource personal information processing to external parties. Should outsourcing become necessary in the future, the Foundation will disclose relevant information and implement appropriate safeguards in accordance with applicable laws and regulations.

Article 6 (Rights of Data Subjects and Methods of Exercise)

Data subjects may exercise the following rights in accordance with applicable laws:

  1. 1) Request access to their personal information
  2. 2) Request correction or deletion of their personal information
  3. 3) Request suspension of the processing of their personal information

※ equests may be made in writing, by email, or through other legally recognized means.

Article 7 (Procedures and Methods for Destruction of Personal Information)

Personal information shall be destroyed without delay upon expiration of the retention period or when it is no longer necessary for the purposes for which it was collected.

  • 1) Electronic files: Permanently deleted using technical measures that prevent recovery
  • 2) Paper documents: Shredded or incinerated

Article 8 (Measures to Ensure the Security of Personal Information)

The Foundation implements administrative, technical, and physical safeguards to ensure the security of personal information:

  1. 1) Administrative measures: Establishment and implementation of internal management plans and regular staff training
  2. 2) Technical measures: Access control management and installation of security software
  3. 3) Physical measures: Restricted access to facilities and storage areas

Article 9 (Chief Privacy Officer)

The Foundation designates the following individuals as responsible for personal information protection:

  • - Chief Privacy Officer / Person in Charge: Hye-jin Kim (Team Leader) / Yeong-gwon Ko (Deputy Manager)
  • - Department: Planning & Operations / IT & Information Systems
  • - Tel: +82-2-2038-3481 / +82-2-2038-3487
  • - Email: adayislife@ncsf.or.kr / yukon@ncsf.or.kr

※ Data subjects may contact the above persons for inquiries, complaints, or requests related to personal information protection.

Article 10 (Remedies for Infringement of Rights)

If a data subject believes that their rights have been infringed, they may seek assistance from the following institutions:

  • - Personal Information Infringement Report Center: 118 (within Korea)
  • - Personal Information Dispute Mediation Committee: www.kopico.go.kr
  • - Supreme Prosecutors’ Office Cyber Investigation Division: www.spo.go.kr
  • - National Police Agency Cybercrime Reporting System: ecrm.police.go.kr

Article 11 (Amendment of This Privacy Policy)

This Privacy Policy may be amended in accordance with applicable laws, regulations, or internal policies. Any amendments shall be announced on the Foundation’s website prior to their effective date.

Addendum
This Privacy Policy shall take effect on February 6, 2026.