Privacy and Copyright Policy

Prohibition of Unauthorized Collection of Email Addresses

The Seoul Mediacity Biennale website operated by the Seoul Museum of Art strictly prohibits the unauthorized collection, use, or provision to third parties of email addresses posted on this site through email harvesting programs or other technical means. Any violation of this policy may result in legal liability under the Act on Promotion of Information and Communications Network Utilization and Information Protection and other applicable laws. Furthermore, all content, information, and creative materials provided on this website are accurate, lawful, adhere to ethical standards of the art community, and do not infringe upon the rights of others.

Copyright Policy

1. Unless otherwise indicated, all content on this website (including text, images, video, audio, and downloadable materials) is the property of the Seoul Museum of Art and/or the Seoul Mediacity Biennale Team (SMB) and is protected under the Copyright Act of the Republic of Korea and relevant international agreements.

2. Some content created or reproduced by SMB in 2025 is available under the Korea Open Government License (KOGL) Type 4 and can be freely downloaded from mediacityseoul.kr. When using such contents, users must indicate the source or copyright holder as follows :

“This work was (re)produced in 2025 by the Seoul Mediacity Biennale Team of the Seoul Museum of Art and is licensed under the Korea Open Government License Type 4. You may use this content only for non-commercial purposes, and with proper attribution of the source and copyright holder. The original version is available for free download at mediacityseoul.kr.”

3. The aforementioned work is classified as a public work and may not be used for any activities that are directly or indirectly related to commercial purposes, as commercial use is prohibited. However, commercial use may be permitted if separate authorization is obtained.

4. In accordance with the Copyright Act and the Korea Open Government License (KOGL) Type 4, the aforementioned public work may not be modified in form or content, nor may it be translated, adapted, arranged, or used to create derivative works such as films or other audiovisual materials.

Privacy Policy of the Seoul Mediacity Biennale

This website is operated by the Seoul Mediacity Biennale Team (hereinafter referred to as “SMB”) of the Seoul Museum of Art, which hosts and organizes the Seoul Mediacity Biennale. The Seoul Museum of Art bears the legal responsibility for the collection and processing of personal information. In accordance with Article 30 of the Personal Information Protection Act of Korea and other applicable laws and regulations, SMB is committed to protecting users’ personal information and hereby establishes and discloses the following Privacy Policy.

Article 1. Purpose of Processing, Categories, and Retention Period of Personal Information
A. SMB collects and processes personal information for the following purposes. The information will not be used for any other purposes unless prior consent is obtained pursuant to Article 18 of the Personal Information Protection Act.
B. The purposes of processing, categories of personal information, and retention periods for each personal information file are as follows.

1. Subscriptions to Biennale e-news
   Purpose of processing: to provide email updates regarding the Biennale news
   Categories of personal info: email addresses
   Retention period: 3 years

2. Program registrations
   Purpose of processing: to register for seats to participate in Biennale programs
   Categories of personal info: names, email addresses, mobile numbers
   Retention period: 1 years

Article 2. Provision of Personal Information to Third Parties
SMB processes personal information only within the scope expressly stated at the time of collection and does not use the information beyond such scope or provide it to any third party without the prior consent of the data subject. However, SMB may provide personal information to third parties without consent in the following exceptional cases permitted under the Personal Information Protection Act:

1. Where separate consent has been obtained from the data subject;
2. Where there are special provisions under applicable laws and regulations;
3. Where the data subject or legal representative is unable to express intention or prior consent cannot be obtained due to unknown address or other reasons, and it is clearly necessary for the urgent protection of the life, body, or property of the data subject or
   a third party;
4. Where personal information is provided in a format that does not allow identification of a specific individual, for the purposes of statistics, academic research, or similar objectives;
5. Where the use of personal information for purposes other than the original or its provision to a third party is unavoidable for the performance of official duties as prescribed by other laws, and such use or provision has been reviewed and approved by the Personal Information Protection Commission;
6. Where necessary for the implementation of a treaty or other international agreement to which the Republic of Korea is a party, and the information is to be provided to a foreign government or international organization;
7. Where necessary for a criminal investigation, indictment, or prosecution;
8. Where necessary for a court’s judicial proceedings;
9. Where necessary for the execution of a sentence, protective disposition, or other enforcement measure.

Article 3. Outsourcing of Personal Information Processing
SMB entrusts the processing of certain personal information to external service providers as follows.

1. Subscription to Biennale e-news
   Outsourced task: none
2. Program registrations
   Outsourced task: none

Article 4. Rights and Obligations of the Data Subject and Methods of Exercise
Data subjects may exercise the following rights concerning their personal information. If a data subject requests access, correction, deletion, or suspension of processing of personal information, SMB shall notify the data subject of the result within ten (10) days from the date of request. Until the request is fulfilled, the use and provision of such personal information shall be restricted.

1. Right to Request Access to Personal Information
   Pursuant to Article 35 of the Personal Information Protection Act, a data subject may request SMB to allow access to their personal information being processed. However, SMB may restrict or deny such access if the request falls under any of the exceptions stipulated in Article 35(4) of the same Act.

2. Right to Request for Correction or Deletion of Personal Information
   A data subject who has accessed their personal information in accordance with Article 35 may, pursuant to Article 36 of the Personal Information Protection Act, request SMB to correct or delete such information.However, if the personal information in question is specified as a mandatory collection item under another statute, its deletion may not be requested.

3. Right to Request for Suspension of Processing of Personal Information
   Pursuant to Article 37 of the Personal Information Protection Act, a data subject may request SMB to suspend the processing of their personal information or withdraw their consent to such processing. Upon receiving such a request, SMB shall, without delay, suspend all or part of the processing of the personal information in accordance with the data subject’s request. However, SMB may reject the request if any of the exceptions set forth in Article 37(2) of the Act apply.

Article 5. Processing of Personal Information of Children Under the Age of 14
SMB does not collect personal information from children under the age of 14 without the consent of their legal guardian. Guardians may exercise the data subject’s rights on behalf of the child.

Article 6. Measures for the Disposal of Dormant Users’ Personal Information
Where a user has not accessed the service for a period exceeding one (1) year, SMB shall either destroy or store separately the personal information in accordance with Article 39-6 of the Personal Information Protection Act. In such cases, the user shall be notified at least thirty (30) days in advance.

Article 7. Procedures and Methods for the Destruction of Personal Information
SMB destroys personal information without delay when the retention period has expired or the purpose of processing has been fulfilled and the information is no longer necessary.

1. Destruction Procedure: When a reason for destruction arises, the relevant personal information is selected, a destruction plan is formulated, and the personal information is destroyed upon approval by the person in charge of personal information protection for each department.
2. Destruction Method: Personal information recorded or stored in electronic file format is deleted using technical methods that render the data unrecoverable. Personal information printed or stored in paper format is shredded using a shredder or incinerated.
3. Backup Data: Backup data and similar materials are also regularly inspected and securely deleted to ensure that they cannot be recovered or restored.

Article 8. Measures to Ensure the Security of Personal
SMB implements the following technical, administrative, and physical measures to prevent loss, theft, leakage, alteration, or damage of personal information.

1. Establishment and enforcement of internal management plans
2. Access control and authorization management
3. Record keeping and prevention of forgery or falsification
4. Encryption of sensitive data
5. Use of antivirus and security software with regular updates
6. Physical access control to facilities such as data storage rooms

Article 9. Personal Information Protection Officer and Contact
SMB appoints the following individuals to be responsible for the protection of personal information and to handle inquiries and complaints:

• Chief Privacy Officer: Kim Mikyung (Director of Administration Department) / Tel: 02-2124-8810
• Privacy Officer: Lee Moonhee (Customer Relations Division) / Tel: 02-2124-8923 / Email: ansgml9@seoul.go.kr / Fax: 02-2124-8950

Article 10. Department in Charge of Access Requests
In accordance with Article 35 of the Personal Information Protection Act, data subjects may request access to their personal information through the department listed below.
SMB will make every effort to process such access requests promptly.

Department in Charge of Receiving and Processing Access Requests
• Department: Customer Relations Division
• Staff in Charge: Lee Moonhee (Customer Relations Division) / Tel: 02-2124-8923 / Email: ansgml9@seoul.go.kr / Fax: 02-2124-8950

Article 11. Remedies for Infringement of Rights
A. A data subject may file a request for dispute resolution or consultation with the Personal Information Dispute Mediation Committee, the Korea Internet & Security Agency’s Personal Information Infringement Report Center, or other relevant institutions to seek redress for any damage caused by personal information infringement. For other reports or inquiries related to personal information infringement, the data subject may contact the following organizations:

1. Personal Information Infringement Report Center (KISA): Tel 118 (no area code required), https://privacy.kisa.or.kr
2. Personal Information Dispute Mediation Committee: Tel 1833-6972, https://www.kopico.go.kr
3. Cyber Crime Division, Supreme Prosecutors’ Office: Tel 1301, https://www.spo.go.kr
4. Cyber Bureau, National Police Agency: Tel 182, https://cyberbureau.police.go.kr

B. Where a data subject’s rights or interests have been infringed due to an act or omission by the head of a public institution in response to a request for access, correction, deletion, or suspension of processing of personal information, the data subject may file an administrative appeal in accordance with the Administrative Appeals Act.

※ For more information on administrative appeals, please refer to the website of the Central Administrative Appeals Commission: https://www.simpan.go.kr

Article 12. Changes to the Privacy Policy
This Privacy Policy shall take effect as of May 30, 2025.
Previous versions may be accessed through SMB’s official website.