Privacy Policy

Privacy Policy

First Barista Academy (hereinafter referred to as the "Company") values the personal information of users and complies with laws such as the Act on Promotion of Information and Communications Network Utilization and Information Protection, the Personal Information Protection Act, the Protection of Communications Secrets Act, and the Telecommunications Business Act. Through this privacy policy, the Company informs users of how their personal information is used and what measures are being taken to protect it. If the privacy policy is revised, we will notify users through our website notices or individual announcements. This policy is effective as of October 18, 2018.

Items and Methods of Personal Information Collection

Items of Personal Information Collected

The Company collects the following personal information for purposes such as membership registration, information updates, online consultations, tuition fee inquiries, online payments, partnership proposals, and franchise applications.

Membership Registration

- Name, nickname, ID, password, email address, phone number, mobile number, gender, date of birth, address, authentication info, course history, campus, IP address, cookie info, access logs, service usage records

Foreign Membership Registration
  • - Same as above, with additional info collected for specific services such as company training, university programs, franchise applications, online inquiries, and payments.
  • - Depending on the service: name, alma mater, occupation, position, payment info, delivery info, and other required data
Payment Information Collected During Online Transactions

- For credit card payments: card company name, card number, etc.

Methods of Personal Information Collection
  • - Through the Company website or email
  • - Offline through forms or applications
  • - From partner companies
  • - Automatically through information collection tools

Purpose of Collecting and Using Personal Information

The Company uses collected personal information for the following purposes:
  • 1) Service delivery and billing: content provision, purchases and payments, delivery, financial verification, and collection
  • 2) Member management: identity verification, access restriction for violators, age verification, legal guardian consent check, complaint handling, dispute records, and membership withdrawal confirmation
  • 3) Marketing and advertising: development of new services, promotional emails, usage statistics
Providing Information to Affiliates

For better services, the Company may share user information with partner companies. Prior consent will be obtained individually, and information will not be shared without consent.

Partner 1: Incruit
  • - Purpose: Job services
  • - Provided items: Membership info
  • - Retention period: Until the end of partnership
Outsourced Company: Crema Inc.

Outsourced tasks: Bulletin board and mileage system maintenance, DM delivery

Other

Providing education services, signup limits, legal guardian verification, dispute records, consultation frequency

Retention and Usage Period of Personal Information

Information is stored for the following reasons and periods:
  • - Retained: Login ID, password
  • - Reason: Service provision and prevention of misuse
  • - Period: 5 years
  • - Retained: Phone number, address, mobile number, email
  • - Reason: Suspension/re-enrollment reference
  • - Period: 5 years
Additionally, legal regulations may require storage of the following:
  • - Name: Based on internal policies and related laws
  • - Period: 5 years
  • - Card/bank/payment records: 5 years

As required by Seoul Metropolitan Office of Education regulations

Destruction of Personal Information

Personal information is deleted once its purpose is achieved.

Destruction Procedure

Information is moved to a separate DB (paper to a separate file) and destroyed after storage period ends.

Destruction Methods
  • - Paper: Shredding or incineration
  • - Electronic: Irrecoverable deletion

Outsourcing of Personal Information Handling

The Company currently does not outsource personal information handling. If this changes, details of the recipient and tasks will be disclosed in advance.

Rights of Users and Legal Representatives

Users or legal guardians may request to view, modify, or delete their own or a child’s information anytime. Some services may be restricted upon refusal of data use.

  • - Changes can be made via "My Info" or by contacting the person in charge
  • - If there is an error, use will be suspended until correction
  • - Deleted data will not be reused

Cookies and Automatic Data Collection

What are Cookies?
  • - Used to store and retrieve user preferences for better service
  • - Do not collect personal info directly
Purpose of Cookies

- Analyze frequency, track preferences, improve service and provide targeted advertising

Cookie Settings
  • - Users can allow, confirm, or reject cookies through browser settings
  • - Refusal may result in service limitations
  • - Example (Internet Explorer): Tools > Internet Options > Privacy Tab

Privacy Manager Contact

The Company designates a manager to handle privacy-related issues:

  • · Department: Academic Administration Team
  • · Phone: 02-2135-8396
  • · Email: first_barista@naver.com
  • · Person in Charge: Park Cheon-gi
  • · You may report any issues to the contact above for prompt resolution
  • · For further assistance:
    • - Dispute Resolution Committee: www.1336.or.kr / 1336
    • - E-Privacy Certification Committee: www.eprivacy.or.kr / 02-580-0533~4
    • - Cyber Crime Unit, Supreme Prosecutors’ Office: icic.sppo.go.kr / 02-3480-3600
    • - Cyber Terror Response Center: www.ctrc.go.kr / 02-392-0330

Notification of Changes

This privacy policy is effective from October 18, 2018. Any changes will be announced on the homepage at least 7 days in advance. Version and revision dates will be clearly stated.

  • - Version: v2.0
  • - Notice Date: October 18, 2018
  • - Effective Date: October 18, 2018