Welcome to MLB Global – Now Shipping to 7 Countries!
Privacy Policy
Notice of Changes to the Privacy Policy
Changes to the Privacy Policy
① This Privacy Policy will take effect from August 13, 2025.
② You can view the previous version of the Privacy Policy at the link below:
Effective as of March 27, 2023 (Click)
F&F Co., Ltd. (the “Company”) values the personal information of its users and manages its Privacy Policy transparently in accordance with applicable laws and regulations.
In line with this commitment, we hereby inform you in advance of the following changes to our Privacy Policy.
1. Effective Dates of the Changes
• Date of Notice: [August 6, 2025]
• Effective Date: [August 13, 2025]
2. Reasons for the Changes
- Revision of the types of personal information collected, the purposes of collection, and the retention period
- Removal of provisions related to the processing of personal information of children under the age of 14
- Update of information regarding the outsourcing of personal data processing (modification of subcontractors)
- Modification of details regarding the destruction of personal information and destruction methods
- Addition of provisions regarding the collection and transfer of personal information overseas
- Revision of the rights and obligations of data subjects and their legal representatives, and the methods for exercising those rights
- Addition of provisions related to behavioral information
- Addition of details regarding third parties collecting and using behavioral information through automatic data collection devices, and information on how to opt out
- Update of the personal information protection officer's information and the process for requesting access to personal information
- Addition of information on remedies for infringement of rights
- Addition of voluntarily defined matters regarding data processing standards and protective measures established by the data controller
3. Key Changes
| Details of Revisions | Before | After | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Collection Items, Purpose of Use, and Retention Period |
|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Matters concerning the processing of personal information of children under the age of 14 |
4. Matters concerning the processing of personal information of children under the age of 14
The company guarantees the legal rights of the legal representative when collecting personal information of children under the age of 14. However, we do not collect personal information of children under the age of 14, who are difficult to obtain consent from legal representatives in reality. |
< Delete > | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Consignment of personal information processing |
2) When concluding a consignment contract, the company prohibits processing of personal information for purposes other than the purpose of entrusted business pursuant to Article 26 of the 「Personal Information Protection Act」, takes technical and managerial protection measures, restricts re-entrustment, manages and supervises the consignee, and compensates for damages, etc. The matters are specified in documents such as contracts, and we supervise whether the trustee handles personal information safely.
|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Personal information destruction procedure and method |
7. Personal information destruction procedure and method
1) The company destroys the personal information without delay when the personal information becomes unnecessary, such as the expiration of the personal information retention period and the achievement of the purpose of processing. 2) If personal information must be kept in accordance with other laws and regulations even though the personal information retention period agreed to by the information subject has elapsed or the purpose of processing has been achieved, the personal information is moved to a separate database (DB) or stored Preserve in different places. 3) The procedure and method of destroying personal information are as follows. ① Destruction procedure - The company selects the personal information for which the reason for destruction occurred and destroys the personal information with the approval of the person in charge of personal information protection of the company. ② Destruction method - The company destroys personal information recorded and stored in electronic file form so that the record cannot be reproduced, and destroys personal information recorded and stored in paper documents by shredding or incinerating with a shredder. 4) Measures regarding destruction of personal information of non-users ① The company converts users who have not used the service for one year to dormant accounts, and keeps personal information separately. Separately stored personal information is stored for a certain period of time and then destroyed without delay. ② The company notifies members scheduled for dormancy up to 30 days before the transition to dormancy, the fact that they will be separately stored, the scheduled date of dormancy, and personal information items that are separately stored in a way that can notify users such as e-mail or text message. ③ If you do not want to switch to a human account, you can log in to the service before switching to a dormant account. In addition, even if the account has been converted to dormant, if you log in, you can use the normal service by restoring the dormant account according to the consent of the user. |
2. Procedures and Methods for the Destruction of Personal Information
1) The Company promptly destroys personal information when the retention period expires, the processing purpose is achieved, or the information is no longer needed. 2) The procedures and methods for the destruction of personal information are as follows: ① Destruction Procedure - The Company selects personal information subject to destruction and, upon approval from the Personal Information Protection Officer, securely deletes the data. ② Destruction Method - Personal information stored in electronic files is permanently deleted in a way that prevents recovery. - Personal information recorded on paper is shredded or incinerated to ensure complete destruction. 3) If the retention period agreed upon by the data subject has expired or the processing purpose has been achieved, but the information must be retained under other legal provisions, the Company will store it separately in a designated database (DB) or in a different storage location.
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Matters Concerning the Collection and Transfer of Personal Information Overseas | < Newly Established > |
F&F transfers personal information overseas under the following conditions:
1) Legal Basis for Cross-Border Transfer: In accordance with Article 28-8(1)(3) of the Personal Information Protection Act of Korea (Outsourcing or storage of personal information overseas for contract fulfillment) 2) Personal Information Transferred: • Basic Account Information: Name, email address, phone number • Order and Payment Details: Shipping address, billing address, payment method (Note: Shopify does not store complete payment information) • Device and Usage Data: IP address, browser type, device information, cookies, and browsing behavior • Customer Interactions: Support inquiries, messages, and order history 3) Country, Timing, and Method of Transfer: • Countries: Canada - Location of Shopify headquarters United States - Where some infrastructure and service providers are based Depending on third-party apps and integrations, data may pass through or be processed in other jurisdictions. • Timing: Transfer of personal information begins as soon as the user interacts with the store (e.g., browsing, account creation, checkout) and continues throughout the use of the store and related services (e.g., order processing, marketing, customer support). Transfers may occur in real-time or periodically depending on the nature of the activity. • Method: All data is securely transmitted using encryption protocols such as TLS (Transport Layer Security). Shopify maintains strict security measures during the transmission and storage of personal information to comply with international standards. 4) Recipient's Name and Contact Information: • Name: Shopify Inc. • Address: Shopify Commerce Singapore Pte. Ltd. Attn: Data Protection Officer 77 Robinson Road, #13-00 Robinson 77, Singapore 068896 • Email: privacy@shopify.com 5) Purpose of Use and Retention Period by the Recipient: • Purpose: To provide the e-commerce platform, process orders and payments, track deliveries, and manage customer relations • Retention Period: Until the termination of the contract or until the period required under relevant laws and regulations 6) How to Refuse Transfer, Procedures, and Consequences: • How: Users may request to refuse cross-border data transfers by contacting the Data Protection Officer via email or through the customer service center • Procedure: Upon confirmation of the request, the result will be communicated to the user • Consequences: Refusal of overseas transfer may result in limitations on the use of services |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Rights and obligations of data subject and legal representative and exercise method | 1) The information subject can exercise the right to view, correct, delete, or suspend processing of personal information at any time against the company.
2) The exercise of rights can be done in writing, e-mail, fax (FAX), etc. in accordance with Article 41, Paragraph 1 of the Enforcement Decree of the 「Personal Information Protection Act」, and the company will take action without delay. 3) Rights can be exercised through an agent, such as a legal representative of the information subject or a person who has been delegated. In this case, you must submit a power of attorney in accordance with the “Public Notice on Personal Information Processing Methods (No. 2020-7)” Annex No. 11. 4) Request for viewing and suspension of processing of personal information may be restricted according to Article 35 Paragraph 4 and Article 37 Paragraph 2 of the 「Personal Information Protection Act」. 5) Requests for correction and deletion of personal information cannot be requested if the personal information is specified as the subject of collection in other laws and regulations. 6) The company checks whether the person who made the request, such as request for viewing, request for correction or deletion, or request for suspension of processing according to the rights of the information subject, is the person or a legitimate agent. |
1) The data subject can exercise the rights to access, correct, delete, stop processing, or withdraw consent regarding personal information at any time.
2) To exercise these rights, the data subject may submit the required form via written request or email as per Article 41, Paragraph 1 of the Enforcement Decree of the Personal Information Protection Act. The Company will take prompt action in response to such requests. - The data subject can also view, modify, or delete their shipping address directly at any time by accessing MY PAGE > My Information on the website. 3) The rights may also be exercised through a legal representative or an authorized agent. In such cases, a power of attorney as per Form 11 of the "Notice on Personal Information Processing Methods (2023-12)" must be submitted. 4) Requests for access and stopping processing of personal information may be restricted under Articles 35(4) and 37(2) of the Personal Information Protection Act. 5) Requests for correction and deletion of personal information cannot be made if the information is mandated to be collected under other laws. 6) The Company will verify the identity of the individual making the request for access, correction, deletion, or processing stop to ensure it is the rightful data subject or their legitimate representative. |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Collection, Use, Provision, and Rejection of Behavioral Information | < Newly Established > |
1)The Company uses cookies and other automated data collection tools to process behavioral information in a non-identifiable manner in order to provide data subjects with optimized, personalized services, benefits, and online targeted advertisements during their use of the services.
2)The Company provides behavioral information as follows.
3) Data subjects can enable or disable online targeted advertising by changing their cookie settings in their web browser. However, modifying cookie settings may affect the availability of certain services, such as automatic login on websites. ▶ Blocking/Allowing Personalized Ads via Web Browsers (1) Chrome ① How to delete cookies stored in your web browser: • Click the “⋮” icon at the top right of Chrome and select Settings. • On the left panel, click Privacy and Security, then select Clear browsing data to choose which data to delete. ② How to block third-party cookies in your web browser: • Click the “⋮” icon at the top right of Chrome and select Settings. • On the left panel, click Privacy and Security, then select Third-party cookies and choose to Block third-party cookies. ③ How to block all cookie storage in your web browser: • Click the “⋮” icon at the top right of Chrome and select New Incognito Window. • In incognito mode, browsing history, cookies, site data, and form inputs are not saved on your device. (2) Edge ① How to delete cookies stored in your web browser: • Click the “…” icon at the top right of Edge and select Settings. • On the left panel, click Cookies and site permissions, then select Manage and delete cookies and site data to remove all cookies and site data. ② How to block third-party cookies in your web browser: • Click the “…” icon at the top right of Edge and select Settings. • On the left panel, click Privacy, search, and services, then under the Tracking prevention section, select your preferred level (Balanced or Strict). • Alternatively, go to Cookies and site permissions → Manage and delete cookies and site data, and select Block third-party cookies. ③ How to block all cookie storage in your web browser: • Click the “…” icon at the top right of Edge and select New InPrivate Window. • In InPrivate mode, browsing history, cookies, site data, and form inputs are not saved on your device. (3) Contact for Behavioral Information Inquiries If you have any questions regarding behavioral information, or wish to exercise your right to opt out or file a complaint, please contact us using the information below. ▶ Department in Charge of Personal Information Protection Department Name: Information Security Team Person in Charge : Won-jun-seok Contact : 02-520-0020, privacy@fnfcorp.com |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Matters concerning the installation, operation and rejection of automatic personal information collection devices |
1) The company uses 'cookies' that store and retrieve usage information from time to time to provide personalized services to users.
2) Cookies are a small amount of information that the server (http) used to run the website sends to the user's computer browser, and is sometimes stored on the hard disk of the user's PC computer. ① Purpose of use of cookies: It is used to provide optimized information to users by identifying the types of visits and use of each service and website visited by the user, popular search words, security access, etc. ② Installation/Operation and Rejection of Cookies: You can refuse to save cookies by setting options in the Tools>Internet Options>Personal Information menu at the top of the web browser. ③ If you refuse to save cookies, you may experience difficulties in using customized services. |
1) The Company uses cookies to store and retrieve user information to provide personalized services.
2) Cookies are small pieces of data sent by a web server (HTTP) to a user's computer browser and may be stored on the user's PC hard drive. ① Purpose of Cookie Usage : Cookies are used to optimize user experience by analyzing website visits, user preferences, search trends, and security settings. ② How to Allow or Block Cookies ▶ Managing Cookies in Web Browsers - Chrome: Browser Settings → Privacy & Security → Clear Browsing Data - Edge: Browser Settings → Cookies and Site Permissions → Manage and Delete Cookies and Site Data ▶ Managing Cookies in Mobile Browsers - Chrome: Mobile Browser Settings → Privacy & Security → Clear Browsing Data - Safari: Device Settings → Safari → Advanced → Block All Cookies - Samsung Internet: Mobile Browser Settings → Browsing Data → Clear Browsing Data ③ Disabling cookies may affect the availability of personalized services. |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Person in charge of personal information protection and request for access to personal information |
[Personal Information Protection Officer]
Name: Ryu Young-seok Position: Chief Privacy Officer (CPO) [Personal Information View Request Reception/Processing Department] Department Name: Information Security Team Person in charge: Hwarang Kim Contact: privacy@fnfcorp.com, Discovery Expedition: 080-820-8802, MLB: 080-807-0012 |
[Personal Information Protection Officer]
Name: Ryu Young-seok Position: Chief Privacy Officer (CPO) E-mail : privacy@fnfcorp.com Contact : 02-520-0020 [Personal Information Access Request Department] Department: Information Security Team E-mail : privacy@fnfcorp.com Contact : 02-520-0020 |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Details on the Collection and Use of Behavioral Information by Third Parties through Automated Means and the User's Right to Refuse Such Collection | < Newly Established > |
When a data subject visits or uses the website, the Company allows third parties to collect behavioral information through automated tools such as third-party cookies and advertising identifiers for the purpose of providing efficient services, advertising, and marketing.
The behavioral information collected by third parties from the Company's website includes the following:
Data subjects can control whether behavioral information is collected by third parties through browser settings such as cookie preferences. ▶ On Web Browsers (1) Chrome ① How to block third-party cookies: • Click the “⋮” icon at the top right of Chrome and select Settings. • Go to Privacy and security on the left panel, then click Third-party cookies, and choose the Block third-party cookies option. ② How to block all cookies (incognito mode): • Click the “⋮” icon at the top right of Chrome and select New Incognito Window. • In Incognito mode, browsing history, cookies, site data, and form inputs are not saved on your device. (2) Microsoft Edge ① How to block third-party cookies: • Click the “…” icon at the top right of Edge and go to Settings. • In the left menu, click Privacy, Search, and Services, and in the Tracking prevention section, choose a prevention level (Balanced or Strict). • Alternatively, go to Cookies and site permissions → Manage and delete cookies and site data, and enable Block third-party cookies. ② How to block all cookies (InPrivate mode): Click the “…” icon at the top right and select New InPrivate Window. In this mode, browsing history, cookies, and form data will not be saved. ▶ On Mobile Browsers (1) Chrome (Android Devices) ① How to block third-party cookies: • Open the Chrome app, tap the “⋮” icon at the top right, and go to Settings. • Tap Site settings → Third-party cookies, and choose to block them. • To allow exceptions, tap Add site exception and enter the desired site URL. ② How to block all cookies (Incognito mode): • Open Chrome and tap the “⋮” icon, then select New Incognito Tab. • In Incognito mode, browsing history, cookies, and site data are not stored. (2) Safari (iOS Devices) • Open Settings on your device, scroll to and tap Safari. • Tap Advanced, then enable Block All Cookies. (3) Samsung Internet ① How to block third-party cookies: • Open the Samsung Internet app, tap the “≡” icon at the bottom, and go to Privacy. • Under Privacy dashboard, tap Smart anti-tracking, and select Always. ② How to block all cookies (Secret mode): • Tap the Tabs icon at the bottom of the Samsung Internet app, then tap Turn on Secret mode, and press Start. • In Secret mode, no browsing history, cookies, or site data will be saved. |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Remedies for Data Subjects |
1) In order to receive relief from personal information infringement, the information subject may apply for dispute resolution or consultation to the Personal Information Dispute Mediation Committee, Korea Internet & Security Agency Personal Information Infringement Reporting Center, etc. In addition, please contact the following organizations for reporting or consulting of other personal information infringement.
① Personal Information Dispute Mediation Committee: (without area code) 1833-6972 (www.kopico.go.kr) ② Personal information infringement reporting center: (without area code) 118 (privacy.kisa.or.kr) ③ Supreme Prosecutor's Office: (without area code) 1301 (www.spo.go.kr) ④ National Police Agency: (without area code) 182 (ecrm.cyber.go.kr) 2) Public institutions in response to requests under the provisions of Article 35 (Access to Personal Information), Article 36 (Correction/Deletion of Personal Information), and Article 37 (Suspension of Processing of Personal Information, etc.) of the 「Personal Information Protection Act」 A person whose rights or interests have been infringed upon due to a disposition or omission of the Chairman may request an administrative appeal in accordance with the Administrative Appeals Act. - Central Administrative Appeals Commission: (without an area code) 110 (www.simpan.go.kr) |
If you believe that your personal data has been misused, you may contact the data protection authority in your country of residence or file a complaint with our Data Protection Officer ([privacy@fnfcorp.com]).
Additionally, data subjects may file complaints or report privacy violations to the following external organizations: • Personal Information Infringement Report Center (KISA): https://privacy.kisa.or.kr, ☎ +82-118 • Personal Information Protection Commission (PIPC): https://www.pipc.go.kr, ☎ +82-1833-6972
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Voluntary Measures Specified by the Data Controller Regarding Personal Data Processing Standards and Safeguards | < Newly Established > | To enhance awareness of personal data protection and foster a culture of privacy within the company, we are implementing the following voluntary protection activities:
Operation of Personal Data Protection Campaigns We conduct internal campaigns to raise awareness of personal data protection. These include posting informational posters and internal notifications targeting all employees to emphasize the importance of safeguarding personal information. |
※ For inquiries regarding the revised Privacy Policy of F&F, please contact our Personal Information Inquiry Department.
▶ Responsible Department: Information Security Team
Person in Charge: [Won-Jun-Seok]
Phone: +82-2-520-0020
Email: privacy@fnfcorp.com
※ You can view the full details of the changes on our website at (https://en.mlb-korea.com/)
Go to Privacy Policy