Privacy Policy

The Institute of Future Sustainable Development (IFSD) is committed to protecting the rights and freedoms of individuals by processing personal data lawfully and managing it securely in accordance with the Personal Information Protection Act and other applicable laws and regulations. In accordance with Article 30 of the Personal Information Protection Act, IFSD hereby establishes and discloses the following Privacy Policy to inform data subjects of the procedures and standards related to the processing of personal information, and to ensure the prompt and smooth resolution of any related concerns or complaints.

The Institute of Future Sustainable Development (IFSD) processes personal information for the following purposes. The personal data collected will not be used for purposes other than those specified below. If the purpose of use is changed, IFSD will take necessary measures, such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.

• • Donation Management: Processing of donation payments; receiving and confirming donation applications from individuals, corporations, and organizations; issuing donation receipts; reporting on the use of donations; and conducting internal financial audits.

The Institute of Future Sustainable Development (IFSD) processes and retains personal information within the retention and usage period specified by applicable laws or as agreed upon by the data subject at the time of collection. The specific periods of retention and use for each category of personal information are as follows:

• • Personal information collected in relation to the issuance of donation receipts is retained and used for the above purpose for five (5) years from the date of consent to collection and use.
  • Legal Basis: Pursuant to Article 112-2 of the Corporate Tax Act, any entity issuing donation receipts is required to prepare and retain issuance records by donor and by donee organization. These records must be stored for five years from the date of issuance, as they are necessary for the donor to claim income tax deductions, business expense recognition, or inclusion as deductible donations.
  • Relevant Laws: Article 112-2 of the Corporate Tax Act, Article 85-3 of the Framework Act on National Taxes
  • Retention Period: 5 years

The Institute of Future Sustainable Development (IFSD) processes the following categories of personal information:

• • Required Information: Name, Resident Registration Number (when opting to receive a donation receipt), Address, Donation Details, Date of Donation, Date of Donation Receipt Issuance

The Institute of Future Sustainable Development (IFSD) processes personal information only within the scope specified in Article 1 (Purpose of Personal Information Processing), and provides personal information to third parties only with the data subject’s consent or in cases permitted by Articles 17 and 18 of the Personal Information Protection Act, such as when required by special provisions of applicable laws.

IFSD provides personal information to third parties as follows:

• • Recipient of Personal Information: National Tax Service (NTS)
  • Purpose of Use by the Recipient: Verification of donation receipt details and eligibility for tax deductions
  • Items Provided: Resident Registration Number, Name, Contact Information, Donation Amount, Address
  • Retention and Use Period by the Recipient: 10 years

① The Institute of Future Sustainable Development (IFSD) promptly destroys personal information without delay when the retention period has expired, the purpose of processing has been fulfilled, or the information is no longer necessary.

② Even if the retention period agreed upon by the data subject has expired or the purpose of processing has been fulfilled, IFSD may retain the personal information if required by other applicable laws. In such cases, the information will be stored in a separate database (DB) or kept in a different storage location.

③ The procedures and methods for destroying personal information are as follows:

• Destruction Procedure: IFSD selects the personal information to be destroyed once a reason for destruction arises and proceeds with the destruction after obtaining approval from the Personal Information Protection Officer.

• Destruction Method: Personal information stored in electronic file formats is destroyed using technical methods that render the data unrecoverable. Personal information recorded and stored in paper documents is shredded or incinerated.

① Data subjects may exercise their rights at any time with respect to the Institute of Future Sustainable Development (IFSD), including the right to request access to, correction, deletion, or suspension of processing of their personal information.

② These rights may be exercised by submitting a written request, via email, or by fax, in accordance with Article 41(1) of the Enforcement Decree of the Personal Information Protection Act. IFSD will take prompt action in response to such requests.

③ The rights may also be exercised through a legal representative or an authorized agent. In such cases, a power of attorney must be submitted using the form prescribed in Annex No. 11 of the “Notification on the Methods of Personal Information Processing (No. 2020-7).”

④ The right to access or suspend processing of personal information may be restricted under Articles 35(4) and 37(2) of the Personal Information Protection Act.

⑤ Requests for correction or deletion of personal information cannot be made if the information is required to be collected under other applicable laws.

⑥ When a data subject exercises their rights, including access, correction, deletion, or suspension of processing, IFSD verifies whether the requester is the data subject or a duly authorized representative.

The Institute of Future Sustainable Development (IFSD) takes the following measures to ensure the security and protection of personal information.

1. Conducting Regular Internal Audits
   We conduct regular internal audits (at least once a year) to ensure the security and stability of personal information handling.

    

   2. Minimization and Training of Personnel Handling Personal Information
   IFSD designates specific personnel to handle personal information and limits access to authorized staff only, implementing measures to minimize the number of individuals with access.

   3. Establishment and Implementation of Internal Management Plans
   IFSD establishes and enforces internal management plans to ensure the safe processing of personal information.

   4. Technical Measures Against Hacking and Malware
   To prevent the leakage or damage of personal information due to hacking or computer viruses, IFSD installs security programs, regularly updates and inspects them, and locates its systems in controlled access zones. These systems are continuously monitored and protected through both technical and physical means.

   5. Encryption of Personal Information
   Users’ personal information, including passwords, is encrypted and securely stored and managed so that only the user can access it. Critical data is encrypted during storage and transmission, and additional security features such as file locking are applied.

   6. Retention and Protection of Access Logs
   IFSD retains access logs to the personal information processing system for at least one year. However, if personal information of more than 50,000 data subjects is added or if unique identifiers or sensitive information is processed, logs are retained for at least two years.
   Security measures are in place to prevent tampering, theft, or loss of access records.

   7. Access Control to Personal Information
   IFSD manages access to personal information by granting, modifying, or revoking access rights to its database systems. Unauthorized external access is blocked using intrusion prevention systems.

   8. Use of Locks for Document Security
   Documents and portable storage devices containing personal information are stored in secure locations equipped with locking devices.

   9. Physical Access Control for Unauthorized Personnel
   Physical storage facilities containing personal information are separated and managed under strict access control procedures to prevent unauthorized access.

The Institute of Future Sustainable Development (IFSD) does not use cookies or similar technologies that store and retrieve user information.

① The Institute of Future Sustainable Development (IFSD) has designated the following Personal Information Protection Officer who is responsible for overseeing all matters related to the processing of personal information, including handling complaints and providing remedies for data subjects.

Personal Information Protection Officer
Contact: kresearchcenter1@gmail.com
※ Your inquiry will be directed to the Personal Information Protection Department.

‣ Personal Information Protection Department
Department Name: Media Team
Contact: kresearchcenter1@gmail.com

② Data subjects may contact the Personal Information Protection Officer or the responsible department regarding any inquiries, complaints, or requests for remedy related to the protection of personal information that arise while using the services (or programs) of the Institute of Future Sustainable Development (IFSD). IFSD will respond to and handle such inquiries without delay.

Data subjects may submit requests to access their personal information, as stipulated in Article 35 of the Personal Information Protection Act, to the department listed below.
The Institute of Future Sustainable Development (IFSD) will make every effort to ensure that requests for access to personal information are handled promptly and efficiently.

‣ Department for Receiving and Processing Personal Information Access Requests
Department Name: Media Team
Contact: kresearchcenter1@gmail.com

① If a data subject suffers harm due to a violation of personal information rights, they may request dispute resolution or consultation by contacting the following institutions.

1. Personal Information Dispute Mediation Committee: 1833-6972 (www.kopico.go.kr)
2. Personal Information Infringement Report Center (KISA): 118 (privacy.kisa.or.kr)
3. Supreme Prosecutors’ Office: 1301 (www.spo.go.kr)
4. National Police Agency (Cyber Bureau): 182 (ecrm.cyber.go.kr)

② The Institute of Future Sustainable Development (IFSD) is committed to protecting the data subject’s right to informational self-determination and actively works to provide consultation and remedies in the event of personal information infringement. For inquiries or reports, please contact the following department:

‣ Personal Information-Related Inquiries and Complaints
Department Name: Media Team
Contact: kresearchcenter1@gmail.com

③ If a data subject's rights or interests have been infringed due to a public institution's disposition or omission regarding a request made under Articles 35 (Access to Personal Information), 36 (Correction or Deletion), or 37 (Suspension of Processing) of the Personal Information Protection Act, they may file for administrative appeal in accordance with the Administrative Appeals Act.

‣ Central Administrative Appeals Commission : 110 (www.simpan.go.kr)

This Privacy Policy has been in effect since June 3, 2023.