Privacy Policy

GDPR Privacy Policy
Our Consumer Goods Industry Team of Korea Trade-Investment Promotion Agency (“KOTRA”, “We”, “Our”, “Us”) is committed to respecting the privacy of users and providing safe and secure user experience.

This GDPR Privacy Policy (“Policy”) informs you about the personal data we collect when you use our website and services (collectively the “Services”) and only applies to individuals residing in the European Union (EU), or to individuals who use services carried out by KOTRA within the EU.

Below, you will find information on how we use your personal data, for which purposes your personal data is used, with whom it is shared and what control and information rights you may have.

1. Controller
A controller is responsible for the collection and processing of your personal data in accordance with the General Data Protection Regulation (GDPR) as well as further applicable data protection laws. Please find your controller and its contact information in 13. Information about Data Protection Management and Links to other websites below here, depending on where you are.

2. Data protection officer
We have appointed a Data Protection Officer in accordance with Art. 37 of the GDPR. If there is anything you are unsure about regarding this Policy or our data protection of your personal data, feel free to contact our Data Protection Officer by emailing dpo@kotra-frankfurt.de at any time.

3. How we collect your personal data
When you visit our website, computer and technology information (e.g. browser type, IP address, unique device ID, etc.) is automatically collected via your browsers.

We generally collect personal data directly from you, for example, your name and E-mail address, etc..

4. What type of personal data we have
We do not collect more information than we need to fulfil our purposes mentioned in this Policy and will not retain it for longer than is necessary. The types of personal data we collect and share depend on the nature of your relationship with us and the requirements of applicable laws.
  • Personal data – In order to provide the event ticket, we may collect personal data including your name, E-mail address and nationality.
  • The personal data that we process may include any other personal data that is provided to us during the course of our services.
  • When you visit our website, we collect and store information that your browser automatically transmits to us such as IP address, date and time of your access, your browser type, operating system type, and cookie-related data. For more information about our use of Cookies, please see 9. Cookies.
  • To provide you with an acceptable service, we may collect your information about dietary which is classed as special category data with your explicit consent.

5. How we process your personal data
As KOTRA is a public agency of South Korea, we process personal data for a number of different purposes that arise from our missions to contribute to the development of the national economy through global business support activities.
We may process your personal data for the following purposes:
  • To respond to your requests, inquiries or concerns regarding our services
  • To facilitate the exhibitions, conventions or events and to provide you with information and services associated with the events
  • To send you surveys with the purpose of requesting your feedback about our events (We send surveys to all event participants instead of specific persons. Participation in surveys is voluntary, not mandatory.)

For visitors to our website
The information collected automatically when you visit our website will be processed for the following purposes:
  • To ensure our website stays securely by preventing, detecting, mitigating and investigating fraud and security breaches
  • To ensure the performance of our website
  • To ensure that the content of our website is presented in the most effective manner for you and your computer

The provision of your personal data will generally be voluntary and there is no statutory nor contractual obligation to provide your personal data. We generally do not contractually require the provision of your personal data but note that in any event, non-provision of personal data might exclude you from using some of our services or parts thereof.

Our services are not intended for use by children. Under applicable national laws, we do not knowingly collect personal data from users who are considered children. According to our User Agreement, children are not permitted to use our services.

6. Legal basis for the processing of personal data
Where KOTRA is processing personal data for the performance of its functions, the primary legal bases under the GDPR are as follows:
  • Where the processing is necessary for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior to entering into a contract in accordance with Art. 6 (1) (b) of the GDPR. (i.e. when you register for our services, responding to your request about our services);
  • Where the processing is necessary for the legitimate interests pursued by KOTRA or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data in accordance with Art. 6 (1) (f) of the GDPR. (i.e. sending thank you letters or surveys after the event, preventing or detecting security issues, gathering business meeting evaluation reports );
  • Where we have obtained a data subject’s consent to the processing in accordance with Art. 6 (1) (a) of the GDPR. (i.e. sending the ticket via E-mail)
  • Where the processing is necessary to comply with legal obligations in accordance with Art. 6 (1) (c) of the GDPR.

7. How we share your personal data with others
We do not sell or disclose your personal data to third parties for their marketing or advertising purposes without your consent. We only disclose your personal data when it is necessary for the purposes mentioned in this Policy or when we have obtained your consent.
Third party service providers may access to your personal data on a need to know basis for the purpose of providing services on behalf of us. They cannot do anything with your personal data without our permission. They will not share your personal data with any organisation apart from us, nor will they keep your personal data for longer than the period we instruct.
When necessary, we share your personal data with the following data processors and recipients as far as necessary for the purposes described in this Policy:
  • KOTRA headquarters in Korea
  • External service providers who facilitate or support our events
  • External operators of our websites and applications
  • Third parties who are involved in judicial proceedings, in particular, if they submit a legal order, court order or equivalent legal order to us.

8. International transfers of personal data
Given the nature of KOTRA’s missions and functions, we may also disclose your personal data to recipients overseas. To ensure an adequate level of data protection when transferring your personal data from the European Economic Area (EEA) to third countries (outside the EEA), we will only transfer your personal data on the basis of an adequacy decision or appropriate safeguards such as Standard Contractual Clauses adopted by the European Commission. Upon request, we will provide you with a copy of the relevant information.

9. Cookies
Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site.

Necessary Cookies We use cookies that are necessary for the operation of this website to enhance your experience when you use our website. You can control your cookies through the browser settings. Please visit the browser developer’s website if you want to find out how to manage your cookies on your browser.

Analytics Cookies Analytics Cookies are used to collect information about how visitors use our website. These cookies are used to compile reports and help us improve the website. These cookies may also be transferred to third parties if third parties process this data on behalf of us. We do not collect the Analytics Cookies unless you allow us to do so. You can adjust your setting on Analytics Cookies by clicking here.
If you want to know more about the cookies, please visit www.aboutcookies.org or www.allaboutcookies.org.

10. Security
We have implemented technical and organisational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorised access or disclosure of personal data. We restrict access to your personal data to those who need to know that information to provide benefits or services to you. In addition, we train our employees to help them be well aware of risks associated with data security and confidentiality.

11. Data retention
We strive to keep our processing activities with respect to your personal data as limited as possible. Your personal data will be retained only for as long as we need it to fulfil the purpose for which we have collected it and, if applicable, as long as required by statutory retention requirements. In case of consent, your personal data will be at the latest deleted without undue delay after the withdrawal of such consent.

12. Your rights
You have the rights, at any time:
  • without giving reasons according to Art. 15 of the GDPR to obtain information about your data stored with us. With the exception of any connection fees charged by your provider, you will not incur any costs as a result of the inquiry;
  • to have the data rectified in accordance with Art. 16 of the GDPR;
  • to have the data erased in accordance with Art. 17 of the GDPR;
  • to obtain from the controller restriction of processing in accordance with Art. 18 of the GDPR;
  • to object to the processing for direct marketing according to Art. 21 (2) of the GDPR;
  • to object to other forms of processing of your personal data in accordance with Art. 21 (1) of the GDPR;
  • to withdraw any consent to the collection and use of data given to us at any time, without affecting the lawfulness of processing based on consent before its withdrawal in accordance with Art. 7 (3) of the GDPR;
  • to receive your personal data in a machine-readable format and to transmit them to another person responsible in accordance with Art. 20 of the GDPR;

If you would like to exercise any of these rights, you can please contact the Data Protection Officer or Data Protection Manager responsible for your region. You can find the contact information of our Data Protection Managers and Data Protection Officer in 13. Information about Data Protection Management and Links to other websites below here.

No cost will be charged for any response to acceptable requests. If for some reasons the request is denied, we will provide an explanation as to why the request has been denied.
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes for the period we hold your data.
We take any complaints we receive from you very seriously. We encourage people to bring it to our attention if they think that our collection or use of information is unfair, misleading or inappropriate. We also welcome any suggestions for improving our procedures.
We ask that you first submit any such complaints directly to the Data Protection Officer or Data Protection Manager in your country. If you aren't satisfied with our response or have concerns about how we process your personal data, you have the right to lodge a complaint with the appropriate data protection authority in your region.

13. Information about Data Protection Management and Links to other websites
You may find links to other websites on our websites. We recommend that you read the privacy policies on the other websites you visit. This Policy does not cover how other websites collect and process personal data.

Region Controller Contact Information
Austria KOTRA Vienna Address Mariahilferstrasse 77-79/1/3, (Generali Center, 3rd Fl.) A-1060, Vienna, Austria
Telephone (43-1)586-3876
Data Protection Manager dpm_Austria@kotra.or.kr
Belgium KOTRA Brussels Address Rond-point Schuman 11, 1040 Brussels, Belgium
Telephone (32-2) 203-2142
Data Protection Manager dpm_Belgium@kotra.or.kr
Bulgaria KOTRA
Address Floor 1, Interpred-WTC, 36 Dragan Tsankov Blvd., sofia 1057, Bulgaria
Telephone (359-2) 969-5030
Data Protection Manager info@kotra-sofia.org
Croatia KOTRA Zagreb Address Radnička cesta 52/Ⅷ, 10000, Zagreb, Croatia
Telephone (385-1)4815-102
Data Protection Manager dpm_Croatia@kotra.or.kr
Czech Republic KOTRA Praha Address Panorama Business Center, Skretova 12, 120 00, Praha 2, Czech Republic
Telephone (420)245-005-650
Data Protection Manager dpm_Czech@kotra.or.kr
Denmark KOTRA Copenhagen Address Holbergsgade 14, 3rd Floor DK-1057, Copenhagen, Denmark
Telephone (45)3312-6658
Data Protection Manager info@kotra.dk
Finland KOTRA Helsinki Address Salomonkatu 17 A, 3 Krs D, 00100 Helsinki, Finland
Telephone +358-9-682-9490
Data Protection Manager helsinki@kotra.or.kr
France KOTRA
Address 19 Avenue de l'Opéra, 75001 Paris, France
Telephone (33-1) 55 35 88 88
Data Protection Manager dpm_France@kotra.or.kr
Germany (Frankfurt) KOTRA Frankfurt Address MesseTurm 33.OG, Friedrich-Ebert-Anlage 49, 60308 Frankfurt am Main, Germany
Telephone (+49)69 2429-920/9
Data Protection Manager frankfurt@kotra.or.kr
Germany (Hamburg) KOTRA Hamburg Address Axel-Springer-Platz 3, Haus B, 20355 Hamburg, Germany
Telephone (49-40) 3405-740
Data Protection Manager info@kotra.de
Germany (München) KOTRA München Address Tal 12, D-80331 Munich, Germany
Telephone (49-89)2424-2630
Data Protection Manager munich@kotra.or.kr
Greece KOTRA Athens Address 6th Fl., 5 Chatzigianni Mexi Str., GR-11528, Athens, Greece
Telephone (30-210)654-3623~4
Data Protection Manager dpm_Greece@kotra.or.kr
Hungary KOTRA Budapest Address H1123, 3F, KOTRA, Alkotas U. 50, Budapest, Hungary
Telephone (36-1)201-8474/6368
Data Protection Manager dpm_Hungary@kotra.or.kr
Italy KOTRA Milano Address Via Larga 2 - 20122, Milano, Italy
Telephone (39-02)795813
Data Protection Manager kotramil@kotra.it
Poland KOTRA Warsaw Address KOTRA, 21th Fl. Warsaw Financial Center, Emilii Plater 53, 00-113, Warsaw, Poland
Telephone (48-22)520-6230
Data Protection Manager biuro@kotra.pl
Romania KOTRA Bucuresti Address Baneasa Business & Technology Park, Soseaua Bucuresti – Ploiesti nr. 42-44, Sector 1, Romania Cladirea A, Aripa A1, Et. 1
Telephone (40-21)233 2171~3
Data Protection Manager kotra@kotra.ro
Slovakia KOTRA Bratislava Address 2nd Floor, Cintorinska 2333/9, 811 08 Bratislava, Slovak Republic
Telephone (421)2 2129 34 51
Data Protection Manager dpm_Slovakia@kotra.or.kr
Spain KOTRA Madrid Address Paseo de la Castellana 95, Torre Europa 95, Planta 9 B, 28046 Madrid, Spain
Telephone (34-91)556-6241
Data Protection Manager dpm_Spain@kotra.or.kr
Sweden KOTRA Stockholm Address KOTRA, Svardvagen 11C, SE-182 33 Danderyd, Sweden
Telephone (46-8)308-090
Data Protection Manager stockholm@kotra.nu
The Netherlands KOTRA Amsterdam Address WTC Amsterdam, C tower 12F Strawinskylaan 1253, 1077XX Amsterdam, The Netherlands
Telephone (31-20)673-0555
Data Protection Manager info@koreatradecenter.nl
United Kingdom KOTRA London Address 1st Floor, Brettenham House North, 12-13 Lancaster Place, London WC2E 7EN, United Kingdom
Telephone (44-20)7520-5300
Data Protection Manager kotra@kotra.co.uk
All other countries within the EU KOTRA EUROPE HEAD OFFICE Address MesseTurm 33.OG, Friedrich-Ebert-Anlage 49, 60308 Frankfurt am Main, Germany
Telephone (+49)69 2429-920/9
Data Protection Officer dpo@kotra-frankfurt.de
All other countries outside the EU KOTRA Headquarters in Korea Address 13, Heolleung-ro, Seocho-gu, Seoul, Korea
Telephone 82-1600-7119
Data Protection Manager dpm_HQ@kotra.or.kr