Privacy Policy

1. Website Visitors

The GAON website currently does not provide visitor account registration, comments, stored online inquiry forms, payment, or personalized advertising features. Therefore, the website does not separately collect or store directly identifiable visitor information such as names, phone numbers, or email addresses in its database.

Basic access logs may be temporarily generated by the server or hosting environment during normal website access, but the current website does not operate a separate feature that stores or analyzes visitor activity records by individual visitor.

Collected and stored items

No separate collection through website features

Purpose of use

Personal information is not used to identify or track website visitors

Retention period

Visitor personal information is not stored in the website database

2. Administrator System Users

The administrator system is provided only to authorized administrators for website content management and security management. Administrator account information and access records are processed for administrator verification, permission management, prevention of unauthorized login attempts, and security incident response.

Administrator account

Administrator ID, password hash, nickname, and account creation date are processed. This information is used for administrator login, permission verification, and displaying the nickname of the news author.

Administrator access records

Administrator ID, login and logout time, login success status, public-IP-prioritized access IP, access path, browser, browser version, operating system, and administrator access environment information are processed. This information is used for temporary blocking after three failed login attempts, access history review, unauthorized access prevention, and security investigation.

Newsroom content information

Author nickname, news title, summary, body text, representative image, creation date, and modification date are processed. This information is used to create, edit, delete, and display newsroom posts on the website.

Retention period

Administrator account information is retained while the administrator permission remains valid and is destroyed without delay when the account is deleted or permission is revoked. Administrator access records are retained for up to one year for security audit and incident response. Newsroom content information is retained until the relevant post is deleted.

3. Third-Party Provision and Outsourcing

GAON does not provide personal information to third parties in principle. However, personal information may be provided within the scope permitted by applicable laws when required by law or when a lawful request is made by an investigative agency or other competent authority.

The website and administrator system currently do not operate features that assume separate outsourcing of personal information processing. If outsourcing occurs in the future, GAON will disclose the entrusted party, entrusted work, and retention and use period in this policy.

4. Destruction of Personal Information

GAON destroys personal information without delay when the retention period expires or the processing purpose has been achieved. Electronic files are deleted in a way that makes recovery difficult, and paper documents, if any, are shredded or incinerated.

5. Rights of Data Subjects

Data subjects may request access, correction, deletion, or suspension of processing of their personal information. However, information required to be retained by law or access records that must be retained for security purposes may be retained within the scope of applicable laws and processing purposes.

6. Security Measures

GAON applies administrative and technical measures such as restricting administrator page access, storing password hashes, temporarily blocking repeated failed login attempts, managing administrator access records, and minimizing unnecessary personal information collection.

7. Privacy Contact

Privacy officer

GAON Website Administrator

Contact

contact@gaon.ne.kr

For reports or consultation regarding personal information infringement, data subjects may contact relevant organizations such as the Personal Information Infringement Report Center or the Personal Information Dispute Mediation Committee.

8. Changes to This Policy

This Privacy Policy may be amended due to changes in laws, services, or internal operating standards. Any changes will be disclosed through the website.