JCB Korean Privacy Policy

1.General Provisions

JCB International Co., Ltd. (the "Company") establishes the Privacy Policy (this "Privacy Policy") in an effort to protect the personal information and the rights of information principals in Korea (the "Principal") and to smoothly address the grievance suffered by the Principal related to the personal information pursuant to the Personal Information Protection Act (the "PIPA").

This Privacy Policy is put into force from November, 01, 2016.

2.Purposes of Processing Personal Information and Items of Personal Information to be Processed.

Purposes of Processing Personal Information Items of Personal Information to be Processed
  • To process payment card transactions (including authorization, settlement, chargebacks and other related dispute resolution).

  • To protect against and prevent fraud and unauthorized transactions.

  • To comply with applicable law, regulatory and card industry standards.

  • Credit card information (credit card number, expiration date etc.), information regarding use of credit card (date and time of transaction, location and amount of transaction etc.)

  • To Provide you with the services available or offered at the JCB Plaza Lounge and the JCB Plaza in Korea, which includes (not limited)

    1. a:

      Providing booking agency services regarding reservations for hotels, restaurants, Panmunjeom visits and/or DMZ third underground tunnel tours;

    2. b:

      Providing tourist information;

    3. c:

      Handling complaints and provide dispute resolution services in connection to credit card transactions;

    4. d:

      Providing support services for lost or stolen credit cards;

    5. e:

      Providing lounge services including free Wi-Fi service;

    6. f:

      Confirming the identification of the Principal; and

    7. g:

      Administrating and managing information regarding use of lounge services and use of credit card

  • Name, contact information (home phone number, mobile number, Korean/local phone number);

  • Credit card information (credit card number, expiration date etc.), information regarding use of credit card (date and time of transaction, location and amount of transaction etc.); and

  • Passport information on Principals who participate in the Panmunjeom visits and/or DMZ third underground tunnel tour and are not a non-Korean national

3.Period of Processing and Retention of Personal information and Destruction of Personal Information

A.Period of Processing and Retention of Personal information

In principle, personal information will be immediately destroyed when the purposes of processing such personal information are attained unless it is necessary to retain the personal information pursuant to the relevant laws and regulations.

B.Destruction of personal information

  1. 1)

    When destroying personal information, measures will be taken to make the personal information irrecoverable or irreproducible.

    1. (a)

      Electronic files which contain personal information will permanently be deleted using a technical method which makes the files irreproducible

    2. (b)

      Any other records, print-outs, documents or any other recording media will be shredded or incinerated.

  2. 2)

    In the event that the processing/retention period has been terminated, but personal information is required to be retained continuously for reasons, including Section 3.A. above, the relevant personal information and personal information files will be stored/maintained separately from other types of personal information.

4.Transfer of Personal Information to a Third Party

The Company transfers personal information to third parties as follows:

Recipient Name Country where Recipient is Located Recipient's Purpose of Using the Personal Information Items of Personal Information to be Transferred Period of Retention and Use by Recipient
Hotels, restaurants, etc. to which the Principal requests reservations Republic of Korea To provide booking agency services Name,
Contact information,
Credit card information
Until the purposes of using the personal information are attained
Travel agencies (including Daihan Travel, International Cultural Service Club, etc.) Republic of Korea To provide booking agency services Name,
Contact information,
Passport information
Same as above

5.Delegation of Personal Information Processing Services

The Company delegates the processing of personal information as set forth below.
In the event that the delegatee or the contents of delegated tasks are changed, the Company will disclose the information thereon through this Privacy Policy.

Delegatee Contents of Delegated Tasks
  • JCB Co., Ltd.

  • Processing payment card transactions

  • Protection against and prevention fraud and unauthorized transactions

  • JTB Global Assistance Inc.

  • J&J Business Development Corp.

  • Provision and maintenance of servers to store personal information

  • JCB Card International(Korea)Co., Ltd.

  • Operation of the JCB Plaza Lounge Seoul

  • J&J Business Development Corp.

  • JTB Global Assistance Inc.

  • LOTTE JTB Co., Ltd.

  • Operation of the JCB Plaza Seoul

6.Rights and Obligations of Principal and Method of Exercise Thereof

The Principal may exercise the following rights:

  • The Principal may request (i) access to his/her personal information, (ii) correction or deletion of the personal information, or (iii) suspension of processing of the personal information.

  • Only when exist a justifiable reason as set forth under laws or a reason equivalent thereto, the Company may reject such a request.

7.Measures to Ensure Security of Personal Information

The Company takes the technical, managerial and physical actions necessary to ensure the security of personal information in accordance with Article 29 of the PIPA.

8.Collection of Opinions and Handling of Complaints

The Principal may file any complaint regarding personal information with the CPO or the responsible department. The Company will provide a prompt and sufficient response with regard to the complaint filed by the Principal.

[Chief Privacy Officer]

  • Name : Kenichi Narihara

  • Department and Title : Compliance Department Risk Management Headquarters
    Executive Vice President

  • Telephone Number : +81 357787053

  • E-mail : inter.naibukanri@info.jcb.co.jp Attention it to the 'Chief Privacy Officer'

[Department in Charge of Protection of Personal Information]

  • Name of Department : Compliance Department Risk Management Headquarters

  • Person in Charge : Kenichi Narihara

  • Telephone Number : +81 357787053

  • E-mail : inter.naibukanri@info.jcb.co.jp Attention it to the 'Chief Privacy Officer'