주식회사 온더마켓 values your personal information. 주식회사 온더마켓 complies with personal information protection regulations and guidelines under relevant laws, including the 「Act on Promotion of Information and Communications Network Utilization and Information Protection」, and has established a personal information processing policy in accordance with relevant laws to do our best to protect users' rights and interests.
주식회사 온더마켓 Privacy Policy
주식회사 온더마켓 (hereinafter referred to as "Company") collects, uses, and provides personal information with the consent of users. We also actively guarantee users' right to self-determination of personal information. 주식회사 온더마켓 guides you through our privacy policy on the types of personal information we collect, purposes of use, processing policies, etc., and informs you of what measures are being taken to protect personal information so that users can use our services with confidence according to their guaranteed rights.
The Company collects or uses customers' personal information necessary to provide smooth services and provide better customer experiences. To provide basic functions of services or various specialized functions according to the terms of service agreed by customers, it may be necessary to verify customers' email or SNS accounts, birth year, gender, devices used, etc. It is also necessary when there are matters to be individually notified to customers regarding personal information, when there are inquiries or disputes related to service use, and for purchasing jellies and payment when using paid services.
In addition, your personal information is necessary for developing new services and improving functions, providing customized services and advertising, providing various events and promotional information and participation opportunities, fulfilling obligations stipulated in laws and regulations, and preventing and blocking wrong usage behaviors that may harm customers contrary to laws or terms of service.
1. Items and Methods of Personal Information Collection
1) Items of Personal Information Collected
a. Information Collected During Membership Registration
For 주식회사 온더마켓 membership registration, smooth customer consultation, and provision of various services, we collect the following personal information during membership registration. Optional collection items can be left blank during membership registration.
- Required collection items: Name, email address, phone number, photo, address book, password, nickname, date of birth, gender, mobile phone number, marketing consent status, location information (region)
- Optional collection items: Major, workplace, school, occupation
- Additional information such as salary, vehicle, housing type, weight, vision, marital history, relationship status, etc. may be additionally collected if the data subject consents to such collection when necessary for providing additional services and conducting surveys.
b. Information Collected During Service Use or Business Processing
- IP Address, visit date and time, service usage records, inappropriate usage records, access logs
- Geographic location of your mobile device when using the service
- Mobile device information, country information (MCC)
- Advertising identifier information (ADID, IDFA)
c. Information Collected When Using Customer Center or Participating in Events
When using the customer center or participating in events, additional personal information not collected during membership registration may be collected for complaint handling, prize delivery, and tax reporting. There may be additional personal information collected depending on the type beyond the items below. During this process, we provide information about collection and obtain separate consent.
- Customer Center: Phone number, email address, real name change information, etc.
- Event participation and winning: Name, phone number, email address, delivery address, resident registration number*
▶ Resident registration number collection: Only when it must be collected according to relevant laws for processing tax and public charges for winners, and separate consent is obtained upon collection.
2) Personal Information Collection Methods
The Company collects personal information through the following methods:
- Consenting to personal information collection during membership registration and service use and directly entering information
- Website, mobile app, mobile web, written forms, telephone, FAX, inquiry email, SNS, bulletin boards
- Event participation, delivery requests
- Collection through generated information collection tools
- Information collection through joint partnerships and cooperation with partner companies
2. Purpose of Personal Information Collection and Use
The Company processes personal information for the following purposes. The personal information being processed will not be used for purposes other than the following, and if the purpose of use changes, we will implement necessary measures such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.
1) Contract fulfillment for service provision, additional service provision, and member management
Matching service and content provision, identity verification for membership service use, personal identification, membership intention confirmation, age verification, membership registration and registration limit, unique user identification for additional service provision, prevention of inappropriate use and unauthorized use by problematic members, prevention of re-registration within 24 hours after membership withdrawal, complaint handling and other civil complaint processing, record preservation for dispute resolution, delivery of notices, confirmation of membership withdrawal intention
2) Event management
Event participation, winner confirmation and related notices, prize delivery, related complaint handling, tax reporting
3) Marketing and advertising utilization
New service (product) development and specialization, delivery of promotional information such as events, service provision and advertisement placement according to demographic characteristics, access frequency analysis or statistics on members' service use, service effectiveness verification
4) Use of collected personal information and provision to third parties
The Company may provide personal information provided by users to third parties in a form that cannot identify users if necessary for statistical compilation, academic research, or market research.
3. Personal Information Retention and Use Period
Information collected during membership registration and service use is preserved for 3 months until membership withdrawal or until the purpose of personal information collection and use is achieved, and thereafter such information is destroyed without delay. However, for the following information, such information is preserved for the specified period even after membership withdrawal for the following reasons.
1) Reasons for information retention according to company internal policy
a. Inappropriate use records
- Preservation items: Inappropriate use records (inappropriate registration, regulation violation records, etc.)
- Preservation reason: Prevention of inappropriate registration and inappropriate use
- Preservation period: 3 years
b. Information for preventing repeated withdrawal/re-registration
When a member withdraws, member information is kept for 3 months after member withdrawal to block such actions for the purpose of preventing inappropriate use of services provided by 주식회사 온더마켓 and illegally obtaining benefits such as event benefits through repeated re-registration, arbitrary cancellation, etc., or concerns about identity theft in this process.
- Preservation items: ID (email address), password, mobile phone number, device information
- Preservation reason: Prevention of inappropriate use such as re-registration, arbitrary cancellation
- Preservation period: 3 months
c. Information for separate storage of personal information and restoration of dormant accounts according to introduction of personal information validity period system
Personal information included in member information of users who do not use the service for a long period is separately stored. If you want to use the service again, you can restore to a normal ID through dormant account restoration processing.
- Separate storage items: Personal information included in member information (including required and optional information)
▶ Separate storage criteria: Conversion to dormant account and separate storage of personal information if not logged in within 1 year from the reference point
▶ Separate storage exclusions: Information necessary for dormant notification and restoration, information that needs to be preserved according to legal regulations and internal regulations
- Separate storage reason: Long-term non-user personal information protection according to 「Act on Promotion of Information and Communications Network Utilization and Information Protection」
- Separate storage period: 3 years after dormant account conversion
2) Reasons for information retention according to relevant laws
When it is necessary to preserve according to regulations of relevant laws such as 「Consumer Protection Act in Electronic Commerce」, 주식회사 온더마켓 keeps member information for a certain period specified in relevant laws. In this case, 주식회사 온더마켓 uses the stored information only for the purpose of storage, and the preservation periods are as follows:
- Service use records, access logs, access IP information: 3 months (Communications Privacy Protection Act)
- Records related to indication/advertising: 6 months (Consumer Protection Act in Electronic Commerce)
- Records related to contracts or withdrawal of subscription: 5 years (Consumer Protection Act in Electronic Commerce)
- Records related to payment and supply of goods: 5 years (Consumer Protection Act in Electronic Commerce)
- Records related to consumer complaints or dispute resolution: 3 years (Consumer Protection Act in Electronic Commerce)
- However, according to internal policy to prevent disputes due to inappropriate use of services, inappropriate use records of services are preserved for 1 year and then destroyed.
4. Personal Information Processing Consignment
Except when customers separately consent during service use or in cases stipulated by law, we do not use customers' personal information beyond the purpose scope mentioned above or provide or share it with third parties. However, for service improvement, blocking and preventing wrong usage behaviors that may harm other customers contrary to laws or terms of service, and stable personal information handling, customers' personal information may be consigned to external parties for processing. Please refer to the following for consigned processing institutions and consigned work content.
1) Account information processing consignment
- Consigned information: Account information
- Consignee: Amazon Web Service Inc.
- Personal information retention and use period: Until membership withdrawal or consignment contract termination (However, for inappropriate use records or information with legal preservation obligations, consignment until the retention period of such information)
2) Notification processing consignment
- Consigned information: KakaoTalk notification delivery
- Personal information retention and use period: When KakaoTalk use is discontinued or notification reception is refused
3) Email transmission consignment
- Consigned information: Email transmission
- Personal information retention and use period: Until membership withdrawal or consignment contract termination
4) Text message transmission consignment
- Consigned information: Text message transmission
- Personal information retention and use period: Until membership withdrawal or consignment contract termination
5. Personal Information Disclosure and Integration
주식회사 온더마켓 does not use users' personal information beyond the scope of use or disclose it externally under any circumstances except when users consent or as stipulated by law. When sharing users' personal information with external parties, we go through procedures to inform and obtain consent in advance, and without users' consent, we do not arbitrarily collect or share additional information. However, the following cases are exceptions:
1) When users consent
- When users have disclosed in advance
- When users consent to integration
▶ We notify in advance that information may be provided when participating in events. Events and winnings may be canceled for inaccurate personal information or missing personal information.
2) When there are requests according to legitimate procedures under legal regulations
- When there are requests from investigative agencies according to procedures and methods specified in laws for investigation purposes under legal regulations
- When there are requests from related agencies according to procedures and methods specified in laws for purposes such as dispute resolution under legal regulations
- Other cases under legal regulations
3) Others
- When necessary for fee settlement according to service provision
- When providing in a form that cannot identify individuals for statistical compilation, academic research, or market research
- When the data subject or legal representative is unable to express intention or prior consent cannot be obtained due to unknown address, etc., and it is clearly recognized as necessary for urgent life, body, and property interests of the data subject or third parties
6. Personal Information Destruction Procedures and Methods
Users' personal information is destroyed without delay in principle after the purpose of personal information collection and use is achieved. Destruction procedures and methods are as follows:
1) Destruction procedures
Information entered by users for membership registration, etc. is transferred to a separate DB after the purpose is achieved (separate document box for paper) and stored for a certain period according to internal policy and information protection reasons under other relevant laws (refer to retention and use period) before destruction. Such personal information is not used for other purposes unless required by law.
2) Destruction criteria
- Member withdrawal request by the user or legal representative
- Member withdrawal request through personal information related organizations such as Korea Internet & Security Agency, identity verification organizations
- Withdrawal of consent for personal information collection and use and request for personal information deletion or destruction
- Long-term non-users according to Information and Communications Network Act
3) Destruction methods
- Personal information stored in electronic file format is deleted using technical methods that cannot reproduce records
- Personal information printed on paper is destroyed by shredding with a shredder or incineration
7. Rights of Members and Legal Representatives and Exercise Methods
Users' personal information is destroyed without delay in principle after the purpose of personal information collection and use is achieved. Destruction procedures and methods are as follows:
- Members and legal representatives can inquire, modify, and delete their registered personal information at any time through the following methods and may also request membership withdrawal by withdrawing consent to personal information provision. Or members and legal representatives can request inquiry, modification, deletion, and withdrawal of consent to provision of personal information by writing, telephone, or email to customer service or the personal information manager.
- When members or legal representatives request correction of errors in personal information, we do not use or provide such personal information until correction is completed. Also, if incorrect personal information has already been provided to third parties, we notify third parties of correction processing results without delay to ensure correction is made. 주식회사 온더마켓 processes personal information canceled or deleted at the request of members or legal representatives according to what is specified in this personal information processing policy and processes it so it cannot be viewed or used for other purposes.
8. Technical/Administrative Protection Measures for Personal Information
주식회사 온더마켓 implements the following technical/administrative measures to ensure safety so that personal information is not lost, stolen, leaked, altered, or damaged when processing members' personal information.
1) Password encryption
ID passwords are encrypted and stored and managed, known only by the individual, and personal information verification and changes are possible only by the individual who knows the password. The encryption implements multiple fragment encryption using hashing methods.
2) Measures against hacking, etc.
주식회사 온더마켓 does its best to prevent users' personal information from being leaked or damaged by hacking or computer viruses. We regularly back up data in preparation for personal information damage, use the latest security solutions to prevent users' personal information or data from being leaked or damaged, and enable safe transmission of personal information over networks through encrypted communication. We also control unauthorized access from outside using intrusion prevention systems and strive to have all possible technical devices to ensure system security.
3) Minimization and education of processing staff
주식회사 온더마켓's personal information related processing staff is limited to personnel in charge, and accounts capable of detailed personal information inquiry have been subject to authority separation measures and security measures. Separate passwords for these accounts are regularly updated through procedures, and compliance with personal information processing policies is always emphasized through frequent education of personnel in charge.
4) Operation of personal information protection dedicated organization
Through internal personal information protection dedicated organizations, we check implementation of personal information processing policies and compliance by personnel in charge to immediately correct and rectify when problems are discovered. However, 주식회사 온더마켓 takes no responsibility for problems arising from leakage of personal information such as IDs and passwords due to members' carelessness or internet problems.
9. Civil Complaint Service Related to Personal Information
a) 주식회사 온더마켓 civil complaint service
주식회사 온더마켓 designates relevant departments and personal information management managers as follows to protect members' personal information and handle complaints related to personal information. 주식회사 온더마켓 strives to provide prompt and sufficient responses to received content. Customer service department operating hours are weekdays from 9 AM to 6 PM.
Customer Service Department
- Department: 운영팀
- Email: admin@onthemarket.co.kr
Personal Information Protection Manager
- Name: 오승기
- Phone: 1688-7537
- Email: admin@onthemarket.co.kr
Personal Information Protection Officer
- Name: 오승기
- Phone: 1688-7537
- Email: admin@onthemarket.co.kr
b) Other personal information related civil complaints
For other reports or consultations regarding personal information infringement, please contact the following organizations:
- Korea Internet & Security Agency Personal Information Protection (https:
- Personal Information Dispute Mediation Committee (hkopico.go.kr/ 1833-6972)
- Privacy Mark Certification Committee (www.eprivacy.or.kr / 02-580-0533~4)
- Supreme Prosecutors' Office Internet Crime Investigation Center (http:
- National Police Agency Cyber Safety Bureau (https:
10. Others
During surveys or events at 주식회사 온더마켓, selective personal information input may be requested for statistical analysis or prize provision. However, we do not collect sensitive personal information (race and ethnicity, origin and place of birth, political inclinations and criminal records, health status and sexual life, etc.) that may infringe on members' basic human rights, and if it must be collected unavoidably, we will definitely obtain prior consent from members. And under no circumstances do we use entered information for purposes other than those previously disclosed to members or leak it externally.
Advertisers who place advertisements within services provided by 주식회사 온더마켓 or websites linked to various directories such as search or bulletin boards may collect users' personal information. Please note that this personal information processing policy does not apply to the collection of personal information by other websites linked within the service.
11. Changes to Personal Information Processing Policy
1. This personal information processing policy applies from 2025년 8월 17일.
a) Required collection items: Name, ID (email address), phone number, photo, address book, camera, password, nickname, date of birth, gender, mobile phone number, photo, marketing consent status, location information (region)
b) Optional collection items: Major, workplace, school, occupation
c) Military service status, salary, vehicle, housing type, weight, vision, marital history, relationship status, etc. may be additionally collected if the data subject consents to such collection when necessary for providing additional services and conducting surveys.