Privacy Policy

Privacy Policy

ASSA ABLOY Korea (the “Company”, “we”, “our”, “us”)) values our customers’ privacy and complies with applicable privacy and personal data protection related laws, including the Act on Promotion of Information and Communications Network Utilization and Information Protection, Etc., Personal Information Protection Act, Protection of Communications Secrets Act and Telecommunications Business Act.

We provide this Privacy Policy to inform you of our policies and procedures regarding collection, use and disclosure of personal data we receive from our customers and our measures for the protection of personal data.

Any update or change to the Privacy Policy will be posted on website ( or its application.

This Privacy Policy becomes effective on April 19, 2018.

Purposes of Collection and Use of Personal Data

We collect your personal information for the following purposes:

  • • Provision of Smart Living services; and
  • • Membership management: Identification for the membership-based services.
Types of Personal Data We Collect

We collect the following personal data to provide its services:

  • • Mandatory: Email addresses, access information.
  • • Optional information: None.
  • • How we collect personal data: We are notified by Google, Naver, Facebook and Daum of tokens identifying customers with their email addresses, and collect real-time door-lock access information via bridges.
Personal Data Retention and Period

In principle, we will destroy personal data without delay after the purpose of its collection or use have been achieved.

While personal data is processed and retained permanently, we will delete all data within 30 days after receipt of notice of suspension of service use.

  • • Preserved information 1

Email addresses, access log

  1. 1. Retention Basis: Identification for service use and access information services
  2. 2. Retention Period: Service use period
  • • Exception (matters that part or all of information on members collected exceptionally during a certain period can be retained)
  1. 1. If you desire to cease using services with your information not retained, you must request in writing or by email ( the Company to delete such information, and the Company will delete all personal information within 30 days after receipt of such request.
Process and Method of Disposal of Personal Data

In principle, we will destroy personal data after the purpose of its collection or use has been achieved. The process and method of the destruction are as follows.

  • • Process

Your personal data provided to us at the time of membership registration will be transferred to our DB after fulfilment of its purpose, retained for a certain period of time for the reasons of data protection according to our internal policy and other related laws or regulations, and then destroyed. Personal data transferred to our DB will not be used for any purpose other than retention unless otherwise required by laws.

  • • Method

Personal information stored in electronic files will be deleted by using technical means that prevent regeneration of it.

Disclosure of Personal Data

In principle, we do not provide personal data of our users to a third party unless otherwise specified below:

  • • If we obtain users’ prior consent;
  • • If required by laws or requested by investing authorities for investigation purposes prescribed by related laws and regulations; or
  • • If we entrust personal data

We entrust personal data provided by users to a company to perform duties delegated by us. The details on the entrusted company are as follows:

Name of the company: HERIT Corporation; and

Entrusted works: Maintenance of application server

Users’ Rights and Method of Exercising Those Rights

Users and their legal representatives may access or correct personal information on them or the relevant child under 14, and request suspension of their membership. Users may directly access to or correct personal information on them or such child under 14 after completing the ‘change of personal information’ (or ‘correction of member information’) process and request suspension of their membership after completing the identification process. Or, you may contact our person in charge of managing personal data in writing or by phone or email and we will process your request without delay. If we have provided incorrect personal data to a third party, we will make correction by notifying correction result to such third party.

Installation/Operation of Tool for Automatic Collection of Personal Data

We do not operate ‘cookies,’ etc., tools finding and collecting your information frequently.

Privacy Policy Contact Information

In order to protect your personal data and handle any complaints regarding our privacy policy, we designate the following division and person responsible for privacy policy management.

* Privacy officer: Jong-Il Kim of Assa Abloy Korea (1544-3232)

You may refer any complaint relating to privacy protection that has occurred in the course of using our services to the privacy officer or the responsible division. We will endeavor to provide adequate responses to the complaint as promptly as possible.

If you have any complaints or need advice relating to other privacy infringement, you may contact the following agencies:

  1. 1. Personal Information Dispute Mediation Committee (
  2. 2. ePrivacy Mark Certification Committee (
  3. 3. Supreme Prosecutors’ Office Internet Crime Investigation Center (
  4. 4. National Police Agency Cyber Terrorism Response Center (