Policy

Privacy Policy

01.

General

  1. Personal information is information that relates to a living individual, such as name and resident registration number, that can be used to identify the individual (or information that cannot identify the individual alone but can be easily combined with other information to identify the individual).
  2. Samyang Biopharm(www.samyangbiopharm.com hereinafter “Company”) highly values personal information security of its users, complies with personal information security regulations of relevant laws that have to be followed by information and communication service providers, such as the Act on Promotion of Information and Communications Network Utilization and Information Protection and Personal Information Protection Act, and uses the Privacy Policy to disclose the purpose and method of utilizing the personal information provided by the users and what kind of personal information protection measures are taken.
  3. The Company displays the Privacy Policy on the first page of the website so that users may view it with convenience.
  4. The Company established the revision procedure required for the continuous improvement of its Privacy Policy, and the Privacy Policy can be revised in accordance with the Company’s needs and social changes. If the Privacy Policy is revised, the version number is assigned to the revised version so that the users can easily distinguish the revised contents.
02.

Collected Personal Information Items and Collection Method

The Company collects and handles the following items.

  1. Customer inquiry: Collected through “Inquiry”
    1. Product Inquiry
      1. Mandatory items: Company, job, name, email, phone number, country and other contents entered in the inquiry
    2. Technology Inquiry
      1. Mandatory items: Company, job, name, email, phone number, country and other contents entered in the inquiry
    3. SENS™
      1. Mandatory items: Company, job, name, email, phone number, country and other contents entered in the inquiry
  2. Download information: Collected from the pop-up window when user requests to download information
    1. Mandatory items: Company, job, name, email, country
    2. Optional items: Consent to receiving marketing information
  1. This website uses cookies to improve your user convenience. More information is provided in the Privacy Policy (Article 12).
03.

Purpose of Collection and Use of Personal Information

The Company collects and handles personal information for the following purposes.

  1. Inquiry information
    1. Provide information on products, partnership and services
    2. Secure an effective communication method for inquiries and complaints
  2. Download information
    1. Analyze and improve website quality, and provide service
    2. (If the user consented to receiving marketing information) Provide information related to products, webinars, exhibitions and benefits
04.

Period of Personal Information Retention and Use

The Company handles and retains the collected personal information of the users according to the period indicated below and disposes of them afterwards.

  1. Customer inquiry information
    1. Retention period: Three years from inquiry date
    2. Retention reason: Record information on consumer complaint or conflict settlement
  2. Download information
    1. Retention period: Three years from the date user requests for information download
05.

Outsourcing of Personal Information

The management of the personal information of users is outsourced to a third party as follows.

개인정보의 위탁 테이블
Subcontractor Outsourced
Work
Information
Owner
Outsourced
Information
Samyang Data
System
IT infrastructure
and database operation
All information
owners
All information
items
Amazon Web
Service Inc.
Data storage All information
owners
All information
items
06.

Personal Information Disposal Process and Method

  1. Disposal Process
    1. If the personal information owner requests for the deletion of their website account or personal information, the collected personal information is transferred to a separate database or a separate table in the database (a separate document box in the case of printed information) and stored for the retention period, then disposed of afterwards.
    2. The abovementioned personal information will not be used for purposes other than information retention, unless required otherwise by law.
  2. Disposal Method
    1. Personal information printed on paper is disposed of by shredding using a shredding machine or incineration.
    2. Personal information stored in an electronic format is deleted using technology that makes deleted information unrecoverable.
07.

Rights of User and Legal Deputy and How to Exercise Rights

  1. Rights of Information Owner and How to Exercise Rights
    1. The user may request for the access, revision or disposal of their personal information. If you posted an inquiry, contact the personal information management officer or person in charge for immediate action.
    2. If the user requests for the correction of error in the personal information, the relevant personal information will not be used or provided until the correction is completed.
  2. Obligations of Information Owner and How to Exercise Obligations
    1. Along with the rights for protection of the user’s personal information, the user also has the obligation to protect themselves and not infringe the information of others. Users shall take caution to prevent the leakage of the their personal information and be mindful of not damaging the personal information of others including posted contents. Any damage of the information or dignity of another person can be punished in accordance with relevant laws.
    2. Users shall ensure that their personal information is accurate and up to date to prevent unexpected incidents. Users shall be responsible for the incidents that occur due to inaccurate information.
08.

Measures to Ensure Personal Information Security

The Company takes the following technical and administrative measures to ensure security throughout the handling process of the personal information of users to prevent loss, theft, leakage, modification or damage of the personal information.

  1. Technical Measures
    1. When storing unique identification information, such as resident registration number, the Company encrypts the information using a reliable encryption algorithm to prevent unauthorized leakage.
    2. When personal information is sent using the network, the information is encrypted using the SSL certificate to ensure a safe transfer.
    3. The Company uses vaccine programs to prevent damages caused by computer viruses. Vaccine programs are updated regularly, and when unexpected viruses appear, vaccines are provided as soon as they are ready to prevent the infringement of personal information.
    4. The Company installs intrusion prevention and detection systems to protect the system against external intrusion activities such as hacking.
    5. The Company stores and manages the record of access to the personal information processing system for at least one year, and takes the required measures to prevent the modification, theft and loss of the access record.
  2. Administrative Measures
    1. The Company establishes and implements an internal management plan for the safe processing of personal information.
    2. The Company limits the authority to access the personal information of users to the processing person within the personal information processing team.
    3. The Company provides regular in-house training and outsourced training related to new security technologies and personal information protection obligations to the employees who process personal information.
    4. Handover of the work of the personal information processing person is carried out under stringent protection of security, and the responsibility for personal information incidents during and after their employment is strictly clarified.
    5. The Company designates the data processing room and data storage room as special security zones with access restrictions.
    6. The Company is not responsible for incidents that occur due to mistakes made by the user or general inherent risks of the internet. Each user shall manage their own information to protect their personal information in a proper manner and take responsibility thereof.
    7. If any loss, leakage, modification or damage of personal information occurs due to mistakes of the Company’s administrator or technical management incidents, the Company shall notify the user immediately and take the appropriate measures for correction and compensation.
  3. The Company complies with relevant laws, including the Personal Information Protection Act, the Enforcement Decree of the Act, the Enforcement Regulations of the Act, and the Standard for Personal Information Security Measures.
09.

Customer Service for Personal Information Complaints

The Company designates a personal information management officer to handle complaints related to the personal information of users.

  1. Personal Information Management Officer
    1. Job level and position: Head of Biopharm Planning Team
    2. Team: Biopharm Planning Team
    3. Email: jungsub.kim@samyang.com
    4. Phone number: +82-2-2157-9809
    5. Fax number: +82-2-2157-9062
  1. Call us from 9:00 to 18:00 on weekdays, or send us an email, fax or mail, and we will provide you with a response within 24 hours from receiving your complaint. If you need expert advice or wish to report an infringement incident related to personal information, please consult the following institutes.
  1. Personal Information Infringement Report Center (Korea Internet & Security Agency)
    1. Phone number: (Without regional code) 118
    2. Website: http://privacy.kisa.or.kr
  2. Cyber Investigation Department of Supreme Prosecutor’s Office
    1. Phone number: (Without regional code) 1301
    2. Website: http://www.spo.go.kr
  3. Cyber Safety Guardian of Korean National Police Agency
    1. Phone number: (Without regional code) 182
    2. Website: https://www.police.go.kr/www/security/cyber.jsp
10.

Notification of Privacy Policy

When there is an addition, deletion or revision of the current Privacy Policy in accordance with changes in the government policy or security technology, it will be notified at least 7 days in advance on the website.

    1. Privacy Policy revision date: 2023-03-21
    2. Privacy Policy effective date: 2023-03-28
11.

Installation and Operation of Image Information Processing Equipment

The Company installs and operates the image information processing equipment at each worksite in Korea as follows.

  1. Installation reason and purpose: Company’s facility safety and fire prevention
  2. Installation location and recording scope
    1. Installation location: Inside and outside areas of the worksite accessed by visitors, such as the main gate, lobby, and the vicinity of the fence line.
    2. Recording scope: Visitor’s movement route
  3. Manager, responsible team and image information access authorized person
    1. Contact the image information manager of each worksite for more information (refer to the CCTV notice at each worksite)
    2. Manager’s phone number: Samyang Corporation General Affairs Team (+82-2-740-7132)
  4. Image information recording time, storage period
    1. Recording time: 24 hours
    2. Storage period: 90 days from recording
  5. Storage location and processing method
    1. Contact the image information manager of each worksite for more information (refer to the CCTV notice at each worksite)
  6. Response to request for image information access
    1. If the user wishes to access the recorded image information or check the existence of image information, the Company shall allow access or checking only if it is clearly required for the benefit the life, body or asset of the user.
  7. Technical, administrative and physical measures for image information protection
    1. Restrict access and limit access authority, apply technology for safe storage and transfer of image information, keep access log and take preventive measures against falsification or modification, prepare storage facility, install locking device, etc.
12.

Installation, Operation and Rejection of Automatic Personal Information Collection System

The Company may install and operate a system that automatically collects personal information such as cookies (access data files) to provide a more convenient user environment.

  1. Cookies are very small text files that are sent to the user’s device by the server used to operate the application, and they are stored in the storage location of the user’s device. When the user uses the application at a later time, the server reads the contents of the cookies stored on the user’s device to maintain the user’s environment settings and provide a customized service.
  2. The user has the right to select the cookies settings. Therefore, the user may allow all cookies, request to check every time cookies are stored, or reject the storage of all cookies in the device settings or options. However, if the user rejects the storage of all cookies, service may be limited or unavailable.
  1. Example of how to manage cookies settings
    [Internet Explorer: Click “Tools” at top of the web browser > Internet Options >Privacy > Change privacy settings]
History
Museum
Inquiries
TOP

We refuse unauthorized email collection

Close

We refuse the unauthorized collection of the email addresses on this website using email collection programs or other technical devices. Please note that any violation will be subject to criminal penalties in accordance with the Act on Information and Communications Network.

Posted on March 28, 2023

Cookie Popup Close
Manage Cookies

This site uses cookies.
By continuing to browse the site,
you agree to the use of cookies.

Privacy Policy Accept