Tourvate complies with privacy regulations and guidelines established by the Korea Communications Commission, including the Act on Promotion of Information and Communications Network Utilization and Information Protection, the Telecommunications Business Act, and the Communications Secret Protection Act.
Through this privacy policy, we would like to inform you about the purpose and method by which information provided to Tourvate is used and protected.
This policy will take effect on February 1, 2024.
1. Personal Information Items Collected
Tourvate collects essential information upon membership registration and for smooth service delivery. Additional optional information may be collected to provide customized and diverse services.
2) How Personal Information is Collected Via membership registration on the website or revision of membership information.
3) Consent to Collection Tourvate considers members to have agreed to the collection of personal information when they check the “I agree” box after reviewing the privacy policy or terms and conditions of use.
4) Tourvate does not collect sensitive personal information (including race and ethnicity, ideology and creed, place of origin, political orientation, criminal records, health conditions, or sexual life) that may infringe upon the basic human rights of users.
2. Purpose of Collection and Use of Personal Information
Tourvate uses the personal information it collects solely for the following purposes. Information provided by users will not be used for any purpose beyond what is listed below, and prior consent will be sought if the purpose of use changes.
1) Member Identification and Management Identity verification, prevention of illegal use and unauthorized access by bad-faith members, confirmation of membership intent, handling complaints, announcements, and delivery of travel information.
2) Marketing and Advertising Development of new services and delivery of customized information and event-based services by Tourvate.
3) Service Announcements and Notifications Transmission of important information that members should be aware of, such as significant changes or improvements to services provided by Tourvate.
3. Retention and Use Period of Personal Information
Tourvate retains and uses users’ personal information only for the duration of service provision from the date of membership registration. Upon membership withdrawal or revocation of consent to collection and use, the relevant personal information will be destroyed without delay once the purpose of collection has been fulfilled or the retention period has ended.
However, the following information shall be retained for the specified periods:
Retained items: Login ID, nickname, email address
Reason: Prevention of confusion in service use and cooperation with investigative agencies regarding illegal users
Retention period: 1 year
In accordance with relevant laws and regulations, the following information is retained as required:
Service usage records, access logs, access IP information — 3 months (Communications Secret Protection Act)
Records of display/advertisement — 6 months (Act on Consumer Protection in Electronic Commerce)
Records of contract or withdrawal of subscription — 5 years (Act on Consumer Protection in Electronic Commerce)
Records on payment and supply of goods — 5 years (Act on Consumer Protection in Electronic Commerce)
Records of consumer complaints or disputes — 3 years (Act on Consumer Protection in Electronic Commerce)
4. Procedures and Methods for Destroying Personal Information
In principle, Tourvate destroys personal information without delay once the purpose of collection and use has been fulfilled.
Destruction Procedure Information entered by users for membership registration is transferred to a separate database after its purpose has been fulfilled and is stored for a set period in accordance with internal policy and relevant laws before being destroyed. Information transferred to a separate database is not used for any purpose other than as required by law.
Destruction Method
Personal information stored in electronic file format is deleted using technical methods that prevent recovery.
Personal information printed on paper is shredded or incinerated.
5. Provision of Personal Information to Third Parties
Tourvate uses users’ personal information only within the scope described in Section 2 and does not provide it to third parties, companies, or organizations without prior user consent.
Exceptions may apply in the following cases:
The user has given prior consent to disclosure.
Disclosure is required for the performance of a service contract where obtaining ordinary consent is significantly difficult for economic or technical reasons.
Disclosure is required in accordance with applicable laws or for investigation purposes.
Disclosure is necessary for the operation of new services provided by Tourvate.
Information is provided to advertisers, partners, or research organizations in a non-identifiable form for statistical, academic, or market research purposes.
Disclosure is required under other applicable laws and regulations.
Even in exceptional cases, Tourvate will endeavor to notify the parties concerned when information is provided in accordance with relevant laws or at the request of an investigative agency.
6. Entrustment of Personal Information Processing
Tourvate entrusts personal information processing to the following third parties for smooth service provision, maintenance, and user convenience:
1) Payment Processing
Trustee: Isis | Purpose: Payment processing
2) Service Operations
Company: Travel Inc. | Items: Personal information required for service use | Purpose: User identification, service provision, and customer support | Retention period: Until membership withdrawal
7. Cookies: Installation, Operation, and Opt-Out
Tourvate operates “cookies” that store and retrieve user information to provide personalized services. A cookie is a small text file sent by a web server to a user’s browser and stored on the user’s computer hard disk.
Purpose of Cookies Cookies are used to analyze access frequency and visit times, identify user preferences and areas of interest, track participation in events, and count the number of visits — enabling targeted marketing and personalized services.
How to Refuse Cookies Users may allow all cookies, receive confirmation each time a cookie is saved, or refuse all cookies by adjusting their web browser settings.
Example (Internet Explorer): Tools → Internet Options → Privacy
Please note that refusing cookies may limit access to certain services that require login.
8. Linked Sites
Tourvate may provide links to other companies’ websites or materials. Tourvate has no control over such external sites and is not responsible for the usefulness of services or materials provided by them. When accessing a linked external site, please review that site’s own privacy policy, as it is separate from Tourvate’s.
9. Youth Protection Policy
To protect minors from harmful information, Tourvate has established and implemented a youth protection policy in accordance with relevant laws, preventing individuals under the age of 19 from accessing harmful content. Tourvate strictly prohibits and sanctions content such as pornography and illegal material that hinders the healthy development of minors.
Establishment of a youth protection plan against harmful information
Restrictions on minors’ access to harmful content and management measures
Staff training on youth protection from harmful online information
Counseling and grievance handling related to harmful information
Other measures necessary to protect minors from harmful content
10. Technical and Administrative Protection Measures
Tourvate takes the following measures to ensure the security of users’ personal information against loss, theft, leakage, alteration, or damage:
1) Encryption of Personal Information User personal information is password-protected, and important data is secured through file encryption, data transmission encryption, or file lock functions.
2) Technical Measures Against Hacking To prevent leakage or damage due to hacking or computer viruses, Tourvate installs systems in access-controlled areas, operates intrusion prevention and detection systems, and monitors them 24 hours a day. Vaccine programs are updated regularly, and new vaccines are applied immediately upon release.
3) Access Control to Personal Information Systems Tourvate establishes and enforces standards for granting, modifying, and revoking access to personal information databases, including password creation rules, change cycles, and other necessary access control measures.
4) Staff Training Personal information-related personnel are minimized, and regular training is provided on new security technologies and personal information protection obligations. Access rights are managed through individually assigned passwords.
5) User ID and Password Management IDs and passwords are intended for use only by the registered user. Tourvate is not responsible for issues arising from a user’s personal negligence in managing their credentials. Users are advised to change passwords frequently and exercise special caution when logging in from public computers.
11. Personal Information Protection Officer
Tourvate has designated a Personal Information Protection Officer to protect customers’ personal information and handle related complaints.