Hanyoung Industrial Co., Ltd. (hereinafter referred to as the “Company”) highly values the personal information of data subjects and establishes and discloses this to comply with the ‘Personal Information Protection Act’ and other related laws.

Items of the Privacy Policy

• Article 1 General Provisions
• Article 2 Personal Information Processed and Purpose of Processing
• Article 3 Processing and Retention Period of Personal Information
• Article 4 Destruction of Personal Information
• Article 5 Provision of Personal Information to Third Parties
• Article 6 Consignment of Personal Information Processing
• Article 7 Rights, Duties, and Exercise Methods of Data Subjects
• Article 8 Measures to Ensure the Safety of Personal Information
• Article 9 Installation, Operation, and Refusal Regarding Automated Personal Information Collection Devices
• Article 10 Chief Privacy Officer
• Article 11 Changes to the Privacy Policy

Article 1 General Provisions “Personal Information” refers to information about a living individual that can identify the individual, such as name, resident registration number, etc. (including information that can be easily combined with other information to identify a specific individual, even if the information alone cannot identify the specific individual). “Data Subject” refers to a person who can be identified by the information being processed and is the subject of that information. The Company discloses its Privacy Policy on the first screen of its website so that it can be easily checked at all times. Furthermore, in the event of any revision to the Privacy Policy, the Company will notify the change through the website (or individual notification). Each business unit may operate a separate Privacy Policy tailored to its business characteristics. In such cases, the Privacy Policy of the respective business unit shall take precedence, so please check the Privacy Policy posted on the relevant website.

Article 2 Personal Information Processed and Purpose of Processing The Company processes personal information within the minimum necessary scope for the provision of services.

• Processed Items

1. Company Name, Name, Email Address, Mobile Phone Number, Contact Number, Fax Number
2. Items automatically generated and collected during website use:
3. Access IP information, service usage records, access logs, cookies, MAC address

• Purpose of Processing

1. User identification, responding to user inquiries, processing civil complaints such as proposals, complaints, and A/S requests.
2. Stable service operation and quality improvement through analysis of user service usage, such as identifying access frequency and collecting service usage statistics.

Article 3 Processing and Retention Period of Personal Information The Company promptly destroys personal information after the purpose of collection and use of the personal information has been achieved. However, the following information is retained for the period specified below for the reasons stated and, if necessary, with the consent of the data subject.

• • Collected Items upon Inquiry Registration

Retention Period: 1 year
Retention Reason: User identification, responding to user inquiries, processing civil complaints, delivery of notices

• • Items automatically generated and collected during website use

Retention Period: 6 months
Retention Reason: Identifying access frequency and collecting service usage statistics

Article 4 Destruction of Personal Information The Company promptly destroys personal information when it becomes unnecessary, such as the expiration of the personal information retention period or the achievement of the purpose of processing. If personal information must be preserved continuously according to other laws, despite the expiration of the retention period agreed upon by the data subject or the achievement of the processing purpose, the personal information will be transferred to a separate database (DB) or preserved in a different storage location. The methods for destroying personal information are as follows:

• Personal information recorded and stored in electronic file format is deleted using a technical method that makes the record irreproducible.
• Personal information recorded and stored in paper documents is destroyed by shredding or incineration.

Article 5 Provision of Personal Information to Third Parties The Company uses personal information within the scope of the purpose for which it was collected and does not use it beyond that scope or provide/share it with third parties. However, exceptions are made in the following cases:

• When separate consent is obtained from the data subject.
• When there are special provisions in other laws.
• When it is clearly deemed necessary for the urgent life, body, or property interests of the data subject or a third party, if the data subject or their legal representative is unable to express their intention or prior consent cannot be obtained due to an unknown address or other reasons.
• When providing personal information in a form that does not allow specific individuals to be identified for the purpose of compiling statistics or academic research.
• When it is not possible to perform the duties under the jurisdiction of other laws unless the personal information is used for purposes other than the original purpose or provided to a third party, and this has been reviewed and resolved by the Protection Committee.
• When necessary to provide to a foreign government or an international organization for the implementation of a treaty or other international agreement.
• When necessary for the investigation of a crime, the prosecution, and the maintenance of a public prosecution.
• When necessary for the court’s judicial proceedings.
• When necessary for the execution of a sentence, custody, or protective disposition.

Article 6 Consignment of Personal Information Processing The Company consigns personal information processing as follows for smooth business operations, and pursuant to relevant laws, stipulates necessary matters in the consignment contract to ensure that personal information is managed safely.

• Website Operation
• Consignee: Hanyoung Industrial Co., Ltd.
• Details of Consigned Work: Website maintenance and system management, etc.
• Personal Information Retention and Use Period: Until the expiration of the specified retention period and reason

Article 7 Rights, Duties, and Exercise Methods of Data Subjects Data subjects can exercise the following rights related to personal information protection against the Company at any time:

• Right to request correction if there are errors, etc.
• Right to request deletion
• Right to request suspension of processing

The rights related to personal information protection can be exercised against the Company through written requests, e-mail, fax (FAX), etc., and the Company will take action without delay. 

If a data subject requests correction or deletion of personal information errors, etc., the Company will not use or provide the personal information until the correction or deletion is completed.

The rights can be exercised through a legal representative of the data subject or a person who has been delegated the authority. In this case, a power of attorney must be submitted.[Download Form]]

Article 8 Measures to Ensure the Safety of Personal Information The Company takes the following measures to ensure the safety of personal information:

• Administrative Measures: Establishment and implementation of internal management plans, regular employee training, etc.
• Technical Measures: Installation of access control systems, encryption of important information, prevention of computer virus damage using vaccine programs, security devices for personal information transmission over the network using encryption algorithms (SSL), operation of intrusion prevention systems, etc.
• Physical Measures: Access control to server rooms, data storage rooms, etc.

Article 9 Installation, Operation, and Refusal Regarding Automated Personal Information Collection Devices The Company operates 'cookies' that frequently store and retrieve your information. A cookie is a very small text file that the server used to operate the Company's website sends to your browser and is stored on your computer's hard disk. The Company uses cookies for the following purposes:

• Analyzing access frequency or visiting time, identifying user preferences and interests, and tracking movements.
• Providing target marketing and personalized services through analysis of participation in various events and frequency of visits.

You have the option to choose whether to install cookies. Therefore, you can allow all cookies, confirm each time a cookie is saved, or refuse the storage of all cookies by setting options in your web browser.

To refuse the setting of cookies, you can select the option in your web browser to allow all cookies, confirm each time a cookie is saved, or refuse the storage of all cookies.

Example of setting (for Internet Explorer): Tools > Internet Options > Privacy at the top of the web browser. However, if you refuse the installation of cookies, there may be difficulties in providing services.

Article 10 Chief Privacy Officer The Company designates the Chief Privacy Officer and related departments as follows to protect personal information and handle complaints related to personal information processing.

• • Chief Privacy Officer and Department in Charge

Name: Park Jeong ho
Department: Management Department
Position: Director
Contact: 051-302-1925

Data subjects can inquire about all matters related to personal information protection, complaint handling, and damage relief that arise while using the Company's services to the Chief Privacy Officer and the department in charge. The Company will promptly respond to and process the inquiries of the data subjects.

If you need to report or consult on other personal information infringements, please contact the following organizations:

• Personal Information Infringement Reporting Center (privacy.kisa.or.kr/118)
• Personal Information Dispute Mediation Committee (www.kopico.go.kr/1833-6972)
• Supreme Prosecutors' Office Cyber Crime Investigation Division (www.spo.go.kr/1301)
• Korean National Police Agency Cyber Bureau (cyberbureau.police.go.kr/182)

Article 11 Changes to the Privacy Policy This Privacy Policy will be effective from January 1, 2021 (Initial Notification).