Privacy Policy
Privacy Policy
The SeAH Changwon Specialty Steel website (hereinafter referred to as the "Website") is managed by SeAH Changwon Specialty Steel Co., Ltd. (hereinafter referred to as the "Company"), which places great importance on protecting customers' personal information. The Company complies with the "Personal Information Protection Act," the "Act on Promotion of Information and Communications Network Utilization and Information Protection," and other relevant privacy protection laws and subordinate regulations. The Company has established the following policy to ensure the protection of customers' personal information and rights, and to efficiently handle any customer complaints related to personal information.
The Company's Privacy Policy may be amended in accordance with the Company's needs or changes to relevant laws and subordinate regulations. In case of any revisions to the Privacy Policy, the Company will notify users in advance through the SeAH Changwon Specialty Steel website's notice section (or through individual notifications).
* This policy has been in effect since August 1, 2013.
-
The personal information collected by the Company through the website is as follows.
a. Personal Information Items Collected: Name and email address.
b. Scope of Personal Information Collected During Service Use and Business Processing: Name and email address.
c. Collection Method: Personal information is collected directly from customers after obtaining their consent for the collection of personal information items.
수집항목 수집방법 성명, 이메일주소, 기타 서비스 이용 과정에서 생성되는 정보 개인정보 항목 수집에 대한 고객 동의 후
고객이 직접 작성하는 방법을 통하여 수집 -
The Company collects and uses customers' personal information within the minimum scope necessary for the following purposes. The collected personal information will not be used for any purposes other than the ones stated below, and if the purpose of use changes, prior consent will be sought.
- Purpose of Using Personal Information Collected During Customer Inquiry Service Use
수집·이용목적 본인 확인 절차에 활용, 상담ㆍ문의 및 민원사항 확인, 사실조사를 위한 연락ㆍ통지, 고객에 대한 답변, 처리결과 통보 -
(1) The Company will destroy the customer's personal information once the purpose of collection and use has been achieved, the retention and use period agreed upon by the customer has expired, or the customer withdraws consent for the collection of personal information.
(2) If a customer has not used the services provided by the Company for a period of 3 years (or a different period specified by relevant laws or requested by the customer), the Company will either immediately destroy the personal information after 3 years or store and manage it separately, segregated from other customers' personal information. In such cases, the Company will notify the customer of the fact that the personal information will be destroyed or stored separately, along with the expiration date and the specific personal information items, by email, written notice, phone, or other similar methods at least 30 days before the expiration of the period.
(3) Notwithstanding paragraphs (1) and (2), the Company may retain all or part of the customer's personal information for a specific period if required by relevant laws. In such cases, the retention will be in accordance with the provisions of the applicable law.
보유항목 보유기간 법적근거 컴퓨터통신 또는 인터넷의 로그기록자료, 접속지의 추적자료 3개월 통신비밀보호법 제15조의2 제2항 및 통신비밀보호법 시행령 제41조 제2항 그 외의 통신사실 확인자료 12개월 -
(1) The Company will use the customer's personal information only within the scope notified in Article 2 and will not use it beyond that scope or provide it to external parties, except as required by law.
(2) Only with the customer's consent, the Company may provide the customer's personal information to other affiliates of the SeAH Group, if the customer's inquiry or complaint pertains to the services of those affiliates, in order to provide seamless service to the customer.
(3) The Company may provide personal information to third parties in the following cases.
- When there are specific provisions in other laws, such as the Telecommunications Secret Protection Act, the Framework Act on National Taxes, the Act on Promotion of Information and Communications Network Utilization and Information Protection, the Act on Real Name Financial Transactions and Confidentiality, the Credit Information Use and Protection Act, the Basic Act on Telecommunications, the Telecommunications Business Act, the Local Tax Act, the Consumer Basic Act, the Bank of Korea Act, the Criminal Procedure Act, etc. However, even in cases where there are special provisions under the law, such as requests from administrative agencies or investigative authorities for administrative or investigative purposes, the Company will not provide the customer's personal information without following proper legal procedures, such as with a warrant or a document bearing the official seal of the institution.
- Other cases where personal information may be provided to third parties in accordance with Articles 17 and 18 of the Personal Information Protection Act.
- Even in the above exceptional cases, the Company aims to notify the customer when personal information is provided to third parties based on the relevant laws or requests from investigative authorities. However, due to legal reasons, the Company may not be able to provide notification. The Company will make every effort to ensure that information is not provided indiscriminately, in violation of the original purpose of collection and use.
-
(1) The Company values customers' opinions highly, and customers have the right to receive sincere responses to any inquiries at all times.
(2) Customers may exercise the following personal information protection rights regarding their personal information at any time
- Request to view personal information
- Request to correct errors
- Request for deletion
- Request to suspend processing
(3) The exercise of rights under paragraph (2) can be done via email or phone, and the Company will take action without delay.
(4) If a customer requests correction or deletion of personal information due to errors, the Company will not use or provide the personal information in question until the correction or deletion is completed.
(5) The exercise of rights under paragraph (2) can also be done through the customer's legal representative or an authorized person. In such cases, a power of attorney form as specified in Appendix 11 of the Personal Information Processing Notice must be submitted.
(6) Customers must not violate the "Personal Information Protection Act" or other related laws, nor should they infringe upon the personal information and privacy of themselves or others that the Company processes.
-
The Company will, in principle, destroy the collected personal information without delay once the purpose of processing the information has been achieved or the retention period and use period have expired, unless there are legal requirements for retention. The destruction procedure, timeline, and method are as follows.
(1) Destruction Procedure and Timeline
Information entered by the customer is transferred to a separate database (or paper documents, if applicable) after the purpose has been achieved. It will be stored for a certain period in accordance with internal policies and relevant laws before being destroyed, or it may be destroyed immediately. Personal information transferred to the database will not be used for any other purposes unless required by law.(2) Destruction Method
- Personal information in electronic file format will be destroyed using a technical method that renders the record irretrievable
- Personal information printed on paper will be destroyed by shredding or incineration
The Company is committed to protecting personal information and implements the necessary technical, managerial, and physical measures to ensure the security of personal information in compliance with relevant laws. These measures include the following to prevent loss, theft, leakage, alteration, or damage of personal information.
(1) Technical Protection Measures
- Management of access rights to the personal information processing system is strengthened, limiting access to the minimum necessary scope for business purposes
- Installation and operation of an access control system for the personal information processing system
- Personal information is stored in an encrypted format for secure storage
- Information sent or received through information communication networks, or delivered through external storage devices (USB, HDD, etc.), is encrypted or locked using file-locking functions
- Compliance with secure password creation rules and enforcement of periodic password changes
- Installation and operation of security programs to protect system operators and personal information during processing
- Retention of access logs for the personal information processing system and application of measures to prevent tampering
(2) Managerial Protection Measures
- Establishment and implementation of an internal management plan for the secure processing of personal information
- Limiting the number of employees handling personal information to a minimum
- Designation of a personal information protection officer and periodic training on personal information protection
- Supervision and training of outsourcing processors regarding personal information protection
(3) Physical Protection Measures
- Establishment and operation of access control procedures for locations storing personal information, such as data centers and document storage rooms
- Storage of documents containing personal information and external storage devices in secure locations with locking mechanisms
- Installation of CCTV for personal information protection and storage of personal video information in secure locations with locks
The Company handles the use of cookies as follows.
- This website does not collect or use cookies.
(1) The Company has designated a Personal Information Protection Officer who is responsible for overseeing all matters related to the processing of personal information and addressing customer complaints, disputes, and requests for compensation
(2) Customers can contact the Personal Information Protection Officer or the relevant department regarding any inquiries, complaints, or requests for compensation related to personal information protection while using the Company's services (or business). The Company will respond to and address customers' inquiries without delay
(3) The Company values customers' personal information highly and strives to prevent its damage, infringement, or leakage. However, despite implementing technical safeguards, the Company is not responsible for any unforeseen incidents resulting from basic network risks, such as hacking, or from disputes arising from posts written by customers
개인정보 보호 책임자 세아창원특수강 양영주 상무 / 지속가능경영실장 Phone number 02)6970-2016 E-mail youngju.yang@seah.co.kr If customers need consultation or wish to report an infringement of personal information, they can contact the Company's Personal Information Management Officer or the relevant department, or inquire with the following organizations.
Personal Information Protection Comprehensive Support Portal
www.privacy.co.kr (02-2100-3394)Personal Information Infringement Reporting Center
www.118.or.kr (Dial 118 without area code)Supreme Prosecutor’s Office Cyber Crime Investigation Division
www.spo.go.kr (02 - 3480 - 3571)National Police Agency Cyber Terror Response Center
www.ctrc.go.kr (1566 - 0112)This Privacy Policy was revised in [ * ] year [ * ] month and will take effect from the date of implementation. If there are any additions, deletions, or corrections to the changes based on laws and policies, they will be notified at least 7 days before the changes are implemented through a notice
Announcement Date: January 16, 2023
Effective Date: January 16, 2023