The Hotel Peyto ("the company" hereinafter) informs you as to the usage and methods in which the image information the company processes is used or maintained through its policy on operation and maintenance of image or video information processing appliances.
The company installs and operates image or video information processing appliances for the below-listed purposes pursuant to Article 25 paragraph 1 of the Personal Information Protection Act:
|Location and coverage of appliances installed
|Lobby, entrance, elevator, hallway
|Rooftop, outside, etc.
|Access Controller HR Manager
|HR & General Affairs Team
|+82 2 6936 8119
|30 days from day shot
Processing method: Records are maintained concerning requests for use of personal image or video information for unauthorized purposes, provision to third parties, destruction, viewing etc. Personal image or video information is permanently deleted in an irrecoverable method (shredded or incinerated in case of output) when the storage period expires.
You may request the maintenance manager of the personal image or video information at any time when you desire to view or verify the existence or deletion of your personal image or video information. However, it shall be limited to the personal image or video information in which you are recorded or that is clearly necessary for urgent rescue of life, physical or financial profits of the owners of such information. You may check the image or video information by visiting the department in charge after giving advance notice to the above-mentioned maintenance managers or persons (under paragraph 3).
The company will, without delay, take actions when the owner of the personal image or video information requests the viewing or verification of existence or deletion of the same. In the below-listed cases, the company may refuse the owner's request for viewing or verification of the personal image or video information; in such a case, the maintenance manager must inform the owner of the refusal cause in writing within 10 days.
The image or video information handled by the company is maintained in a secure manner using encryption and other actions. Further, the company differentiates the access authority to personal information as an administrative measure for protecting personal image or video information. The company also records and maintains the date and time personal image or video information is created, the purpose, the person and date and time of viewing the personal image or video information in order to prevent forging or tampering. In addition, locking devices are installed in order to store personal image or video information in a physically secure manner.
This policy for operation or maintenance of image or video information processing appliances was enacted on 15 October 2013. The company will publish or notify the causes for and details of changes through its website at least seven days before implementation when the policy contents are added, deleted or revised because of changes in the statutes, policies or security technologies.
Hotel Peyto collects personal information using the below-listed means:
Hotel Peyto does not use or disclose the customers' personal information in excess of the "Purposes of collecting or using personal information” under any circumstances, except for below-listed cases:
Hotel Peyto outsources personal information handling services to a specialized service provider in order to improve service quality. In the outsourcing contract, Hotel Peyto provides for compliance with statutes related to protection of personal information and maintenance of confidentiality of personal information. The service provider, scope of the outsourced service, and period are as follows:
|Retention period of personal information
|Sanha Information Technology Inc.
|Website & System management
|Membership withdrawal or end of outsourcing contract
Hotel Peyto destroys personal information of its members without delay when the purpose of collection or provision of such personal information is accomplished. However, certain personal information is retained for given periods according to the following reasons;
Based on related legislation such as Consumer Protection Law, Commercial Law, e-commerce law, etc., Hotel Peyto retain specific customer information for certain period of time. The objective of the information retention and the period of retention are as follows:
Hotel Peyto destroys personal information of its members without delay when the purpose of collection or provision of such personal information is accomplished. The procedure and method of destruction are as follows:
Hotel Peyto takes the below-listed technical, administrative and physical measures to secure safety in handling the personal information of its customers to prevent loss, theft, leakage, forgery or tampering:
The password of the user ID is encrypted before storing or management of it. Only the user himself may access his personal information. Viewing and correcting personal information is only possible by the user himself who knows the password.
The Hotel installs and periodically updates and checks security programs in order to prevent leakage or tampering of any personal information from hacking or computer viruses. All systems are installed in access-controlled areas and monitored and blocked technically and physically.
The Hotel appoints a minimum number of staff members who are allowed to handle personal information and conducts periodic education. Separate password for staffs handling personal information is given and it is regularly changed for security.
We have staffs responsible for protecting our customers’ personal information. Internal management plans are developed and implemented to ensure the safe handling of personal information. In-house audits are also performed regularly for security. However, Hotel Peyto is not responsible for damage or loss caused by customers’ mistakes or by accidents which is out of our company’s management area.
Hotel Peyto appoints the department and staffs responsible for protecting personal information as follows to protect the personal information of its customers and to collect their comments and handle their complaints:
|Personal Information Manager
|Personal Information Management Staff
|HR & General Affairs Team