Allpowerful (‘allpowerful.co.kr’, hereinafter referred to as “Allpowerful”) strictly complies with domestic personal information protection laws, including the Personal Information Protection Act, from service planning to termination. We also provide services in compliance with international standards, including the OECD’s Personal Information Protection Guidelines.
You have the right to fully exercise your rights regarding the information collected. We will always notify you of any changes to our Privacy Policy and post the updated information for your review.
However, only when required by law or when requested by investigative or administrative agencies with court approval may we disclose a minimum amount of information without your consent, following internal procedures.
Allpowerful’s Privacy Policy contains the following:
01. Collection and Use of Personal Information
02. Entrustment of Personal Information Processing
03. Provision of Personal Information to Third Parties
04. Destruction of Personal Information
05. Rights/Obligations of the Data Subject
06. Refusal of Cookie Installation and Operation
07. Measures to Protect Personal Information
08. Designation of a Personal Information Protection Officer
09. Remedies for Rights Infringement
10. Obligation to Notify
01. Collection/Use of Personal Information
All Powerful collects, uses, provides, and destroys the following personal information, depending on the type of service used.
1) Member
Purpose of Classification: Retention and Deletion of Collected Items
Corporate Member: Individual Member
Required Information: Company name, contact name, representative business type, email address, password, mobile phone number. Contact name, email address, password, mobile phone number. Immediately deleted upon membership withdrawal. For purchasing members, retained for 5 years (Act on Consumer Protection in E-Commerce, etc.)
Service Usage: General Service: Company name, contact name, representative business type, email address, password, mobile phone number, representative name, department name, company address, phone number, fax number, product, business registration number, tax invoice receipt email address, tax invoice recipient name, tax invoice recipient phone number. Contact name, email address, password, mobile phone number.
Pay Service
① Card Service: Payment password, card information (card company name, card number, expiration date, date of birth or business registration number, first two digits of password)
② Account Service: Company name, contact name, business registration number, mobile phone number (mobile phone number, mobile carrier name), bank account information (account holder, account number, bank code, bank name) Payment Password
① Card Service Use: Payment password, card information (card company name, card number, expiration date, date of birth or business registration number, first two digits of password)
Wholesale/Delivery
Program: Company name, contact name, contact contact information (phone number, mobile phone number), email address (not applicable) Deleted immediately after fulfilling the purpose of use
All-in-one
Service: Company name, contact name, contact contact information (phone number, mobile phone number), email address (not applicable) Stored for 1 year and then deleted immediately
Automatically collected information: Cookies for identifying and preventing fraudulent use, service usage records, device information: Deleted immediately upon membership withdrawal
IP addresses stored for 3 months (Protection of Communications Secrets Act)
Additional Information: Delivery service recipient information (name, contact information, address) stored for 5 years
(Act on Consumer Protection in E-commerce, etc.)
Calibration Service: Copy of business registration certificate
Consultation and guidance: Consultation details stored for 3 years and then deleted immediately
Optional Information: Marketing (discount coupons, catalogs and flyers, statistical analysis based on service use, and personalized product recommendations) Email, contact information, address (catalogs, (Address for receiving flyers, etc., etc.), company fax number, etc., will be deleted immediately upon request for deletion or suspension of service, or upon withdrawal of membership.
2) Non-members
A. All Powerful requests only the personal information necessary for non-members to apply for wholesale/delivery programs and all-in-one services, as well as for consultation and guidance. This information will be used for service-related purposes, such as application/application, response of results, and consultation guidance, and will never be used for any other purpose.
B. Purpose and Items of Collection/Use of Non-Member Personal Information
Classification Purpose, Collection Items, Retention and Deletion
Required Information: Wholesale/Delivery Program Service User Company Name, Contact Name, Contact Contact Contact Contact (Phone Number, Mobile Number), Email Address: Deleted immediately upon fulfillment of purpose.
All-in-One Service User Company Name, Contact Name, Contact Contact Contact Contact (Phone Number, Mobile Number), Email Address: Retained for 1 year and then immediately deleted.
Customer Consultation and Guidance: Name, Mobile Number, Consultation Details: Retained for 3 years and then immediately deleted.
Automatically Collected Information: Identification and Prevention of Unauthorized Use: Cookies, Service Usage Records, Device Information: Deleted immediately upon fulfillment of purpose. IP addresses are retained for 3 months (Protection of Communications Secrets Act).
D. Deletion of Non-Member Personal Information
Personal information used for the All-Powerful Wholesale/Delivery Program and All-in-One Service applications, consultations, and guidance is destroyed after the purpose, including response to results and service provision, has been fulfilled, and the retention period specified in internal policies and other relevant laws and regulations for information protection has expired. When using the service as a non-member, the Navi MRO Privacy Policy applies to all aspects of the service, except for those applicable only to members (including personal information destruction).
D. Non-members’ personal information is protected to the same extent as members’.
3) Long-Term Inactive Members
– A long-term inactive member refers to a member who has not used Navi MRO for one year since their last use.
– This member’s personal information will be stored separately and securely. If no request is made for service use for five years, this stored personal information will be promptly destroyed.
– The affected member will be notified of this change at least 30 days prior to the date of separation via email.
– If a long-term inactive member wishes to continue using All Powerful’s services, they are requested to log in to the All Powerful website.
4) Member Information Collected and Used in accordance with Laws
Based Laws and Retention Periods for Retained Information
Records regarding consumer complaints or dispute resolution: 3 years
Consumer Protection Act in E-commerce, etc.
Records regarding payment and supply of goods: 5 years
Records regarding contracts or withdrawals: 5 years
Records regarding labeling/advertising: 6 months
Website visit records: 3 months
Communications Secrets Protection Act
02. Personal Information Processing Consignment
All Powerful consigns personal information processing as follows to provide smooth services and efficient business operations.
– Personal information for consignment purposes is retained and used for the following periods: The retention and use period is terminated after the purpose of providing the goods or services has been achieved. (However, information is retained for the statutory period in accordance with the provisions of relevant laws and regulations.)
Classification: Consignment work by the consignee
Identity verification: Identity verification service for KCB simple payment
Delivery service: CJ Logistics Co., Ltd., Daeshin Express Co., Ltd., Dawon Logistics Co., Ltd. Product delivery and shipping-related services
Payment processing: NHN Korea Cyber Payment Co., Ltd. Payment processing via credit card, mobile phone, bank transfer, bank deposit (virtual account), PAYCO (simple payment), etc.
NICE Payments Co., Ltd. Research expense card payment processing
Simple payment agency service via credit card/research expense card
KSNET CMS account registration-related services
Notification sending: NetPerC, Kakao SMS and message, Notification Talk
DM sending: Korea Post, CJ Logistics Co., Ltd. Catalog and flyer delivery
Customer consultation and guidance: MBI Solution Co., Ltd. Web-based chat consultation solution (Happy Talk)
Product supply: Supplier (Supplier list) Supply of products through direct delivery, etc.
03. Provision of Personal Information to Third Parties
– We provide personal information to third parties. We do not provide this information.
04. Destruction of Personal Information
In principle, All Powerful immediately destroys collected personal information once the purpose for which it was collected has been achieved. The procedures, deadlines, and methods for destroying personal information are as follows:
1) Destruction Procedure
Your information is transferred to a separate database (or, in the case of paper, a separate document) after the purpose has been achieved and is safely stored. Personal information transferred to the database is either stored for a certain period of time or immediately destroyed in accordance with internal policies and other relevant laws and regulations. Personal information transferred to the database will not be used for any other purpose except as required by law.
2) Destruction Period
Users’ personal information will be destroyed without delay from the end of the retention period if the retention period has expired. If personal information becomes unnecessary due to the achievement of the purpose for which it was processed, the discontinuation of the relevant service, or the termination of the business, the personal information will be destroyed without delay from the date it is deemed unnecessary.
3) Destruction Method
– Electronic files are destroyed using technical methods that render the records unrecoverable. – Information printed on paper will be destroyed by shredding or incineration.
05. Rights/Obligations of the Data Subject
Users of Allpowerful’s services may exercise the following rights as data subjects and their legal representatives.
1) Users and their legal representatives may request modifications or withdrawal of consent for the collected information at any time. However, withdrawal or deletion of consent may restrict access to some or all of the services.
2) (Inquiry/Modification and Correction) You may request this through the “My Page > Information Management > Member Information Confirmation/Modification” menu on the website or through 1:1 consultation. We will not use or provide the information to others until the processing is complete.
3) (Withdrawal/Deletion of Consent) You may request withdrawal or deletion of your consent to the collected information through KakaoTalk consultation. However, withdrawal or deletion of your consent may restrict access to some or all of the services. Withdrawal of consent may be difficult for information collected pursuant to other laws.
4) (Membership Cancellation)
– Individual Members: You can proceed by clicking the “My Page > Check/Edit Member Information > Cancel Membership” button.
5) (Service Reuse) You can check if you have not used your account yet by using the “Find ID” function. You must change your password before reusing your account.
06. Cookie Installation and Operation Refusal
1) Definition of Cookies
Cookies are very small text files that the server used to operate the website sends to the user’s computer and are stored on the user’s computer hard drive. Therefore, you can voluntarily choose whether to install and collect cookies, and thus refuse their collection. However, if you refuse to store cookies, you may experience limitations in using some services that require login.
2) How to Opt Out of Cookie Settings
▶ For Internet Explorer:
Click the “Tools” menu at the top of the web browser > “Internet Options” menu > “Privacy” tab > “Manual Settings”
▶ For Chrome,
Select the icon in the upper right corner of the web browser > Select “Settings” > Select “Show Advanced Settings” at the bottom of the screen > Click the “Content Settings” button in the Privacy section > Configure settings directly in the Cookies section.
07. Measures to Protect Personal Information
Allpowerful implements technical, managerial, and physical protection measures to safely manage your personal information and protects your personal information above and beyond the standards required by the Personal Information Protection Act.
Category Protection Measures
Technical Personal Information Encryption
Technical Measures Against Hacking, etc.
Storage of Access Logs and Prevention of Forgery and Alteration
Personal Information Access Control
Management Regular Self-Audit
Minimization and Training of Personal Information Handlers
Establishment and Implementation of an Internal Management Plan
Physical Access Control for Unauthorized Personnel
Use of Locking Devices for Document Security
Separation of Controlled/Restricted Areas
1) Personal Information Encryption
Passwords, unique identification information, account numbers, and other information required by law to be encrypted are stored and managed in encrypted form. Important data files are encrypted during transmission or utilize separate security features such as file encryption and locking.
2) Hacking, etc. Technical Measures
To prevent personal information from being leaked or damaged by hacking or computer viruses, our systems are installed in areas with restricted external access. We regularly back up data to protect against potential damage and utilize the latest antivirus software to prevent the leak or damage of personal information or data. We securely transmit and receive personal information over the network through encrypted communication.
3) Storage and Prevention of Forgery and Alteration of Access Records
We store and manage access records to our personal information processing system for at least six months and employ security features to prevent forgery, theft, and loss of access records.
4) Personal Information Access Control
We control access to personal information by granting, modifying, and deleting access rights to our personal information processing systems. We also use an intrusion prevention system to control unauthorized access from outside sources.
5) Regular Internal Audits
To ensure the security of personal information handling, we conduct internal audits annually to identify, analyze, and address risks to personal information in various environments.
6) Minimization and Training of Personal Information Handlers
We use personal information to manage and manage personal information. We minimize the number of employees handling personal information, and we separate the internal network from the external internet for employees who can download personal information from the personal information processing system. Furthermore, we continuously emphasize the protection of member personal information through regular training for personal information handlers and ongoing training and campaigns for all employees.
7) Establishment and Implementation of an Internal Management Plan
We have established and are implementing an internal management plan to ensure the secure processing of personal information.
8) Use of Locking for Document Security
Documents containing important information are encrypted and stored in a secure location with a locking device.
9) Access Control for Unauthorized Personnel
The processing system where personal information is stored is located in a separate physical location, and access control procedures are established and implemented.
10) Separation of Controlled/Restricted Areas
We have established procedures to separate locations where important documents and personal information processing systems are located into controlled and restricted areas, and enforce access restrictions accordingly.
08. Designation of a Personal Information Protection Officer
1) All Powerful is responsible for the processing of member personal information. We have appointed a Personal Information Protection Officer (PIPA) as follows to oversee all related work and to handle user complaints and provide remedies related to the processing of personal information.
– Personal Information Protection Officer
Name: Go Eun-hee
Affiliation: Marketing Team
Contact: sunnye621@naver.com
2) All inquiries, complaints, and remedies related to personal information protection that arise while using the company’s services (or business) may be directed to the Personal Information Protection Officer or the Customer Support Center. All Powerful will promptly respond and address such inquiries.
– Personal Information Complaints
Department Name: Customer Center
Contact: sunnye621@naver.com
09. Remedies for Rights Infringement
You may contact the following organizations for remedies and consultations regarding personal information infringement.
The following organizations are independent from All Powerful. If you are not satisfied with All Powerful’s own handling of personal information complaints or remedies, or if you require further assistance, please contact the following organizations.
▶ Personal Information Infringement Reporting Center (Operated by the Korea Internet & Security Agency)
– Responsibilities: Reporting personal information infringements, requesting consultation
– Website: privacy.kisa.or.kr
– Phone: 118 (without area code)
– Address: 3rd Floor, Personal Information Infringement Reporting Center, 9 Jinheung-gil, Naju-si, Jeollanam-do (301-2 Bitgaram-dong) (58324)
▶ Personal Information Dispute Mediation Committee
– Responsibilities: Applications for personal information dispute mediation, collective dispute mediation (civil resolution)
– Website: www.kopico.go.kr
– Phone: 1833-6972 (without area code)
– Address: 4th Floor, Government Complex Seoul, 209 Sejong-daero, Jongno-gu, Seoul (03171)
▶ Supreme Prosecutors’ Office Cyber Investigation Division: 1301 (without area code) (www.spo.go.kr)
▶ National Police Agency Cyber Security Bureau: 182 (http://cyberbureau.police.go.kr)
10. Obligation to Notify
This Privacy Policy applies from the effective date. If there are any additions, deletions, or corrections to the content due to changes in laws and policies, we will notify you through a notice at least 7 days prior to the effective date. However, if there are any significant changes affecting user rights, such as the collection and use of personal information or third-party provision, we will notify you at least 14 days in advance. Furthermore, if changes to the Privacy Policy are unavoidable due to changes in relevant laws or company policies, we will promptly notify you through a website notice. Please note.
Current Privacy Policy Announcement Date: August 26, 2025
Current Privacy Policy Effective Date: August 26, 2025
Privacy Policy Version: 1.10