Privacy Policy

Collection of Personal Data

The Company collects the minimal data required to provide services.

Table
empty space Route of Collection Scope of Collection
Submission to Whistleblowing Center Your data is collected when filing a report to the Whistleblowing Center using your real name. Name, e-mail address, and contact
Use of the Website Data that is created automatically while using the website are collected. Access IP, history of service use, access logs, cookies, and MAC address

You may reject or allow cookies in your web browser settings.

Use of Personal Data

The Company uses personal data only for the purpose that the user agreed to in advance.

Magnifying glass and gear icon symbolizing service analysis and improvementImprovement of Services

Stable service operation and quality improvement by identifying the access frequency and collecting service use statistics

Person and speech bubble icon representing user inquiries and issue handlingProvision of Services

User identification, resp onse to a user inquiry, and customer service including suggestions, complaints, and·after-sales service

Consigned Handling of Personal Data

The Company provides personal data only for the purpose that the user agreed to in advance.

Shield icon representing secure personal data handling by the data processorConsignment of Personal Data Handling

The Company outsources website maintenance to Hyosung TNS to ensure efficiency in using the services.

Checklist icon symbolizing legally authorized data sharing based on user consentProvision of Personal Data to a Third Party

The Company shall not provide personal data or share them with a third party except in the case where the users consent to disclose in advance.

Personal data may be provided without the user's consent in cases where the obligation to submit personal data occurs under certain laws.

Destruction of Personal Data

The Company shall immediately destroy any personal data collected once the purpose of processing personal data has been achieved.

Clock icon indicating the expiration of data retention periodPoint of Destruction of Personal Data

The Company shall immediately destroy any personal data collected once the personal data retention period expires or else the purpose of processing thereof has been achieved.

Shredder icon representing secure, irreversible disposal of personal dataDestruction Method of Personal Data

Personal data recorded and saved in electronic files shall be destroyed using a technology that prevents restoration. Personal data recorded and saved in paper documents shall be destroyed using a shredder or by incineration.

Article 1. General Provisions

Hyosung Group (hereinafter referred to as the “Company”) values your personal information and establishes and discloses this privacy policy to guide the procedures and standards for the processing of personal information in accordance with Article 30 of the Personal Information Protection Act. To promptly and smoothly handle related complaints, the Company is taking measures to make it easy for customers to check the privacy policy at any time by disclosing it on the first page of the website.

Article 2. Collection Items and Processing Purposes of Personal Information

The Company collects and uses your personal information within the minimum necessary scope for providing services.

  1. Collection Items

    1. When subscribing to the Whistleblowing Center:

      1. Required Information: Name, Email Address, Phone Number

    2. When subscribing to the corporate newsletter:

      1. Required Information: Company Name, Name, Email Address

    3. Automatically generated and collected items during website use:

      1. Connection IP information, service usage records, connection logs, cookies, MAC addresses

  2. Processing Purposes

    1. General Newsletter Subscription:

      1. User Identification, Newsletter Distribution

    2. Corporate Newsletter Subscription:

      1. User Identification, Newsletter Distribution

    3. Automatically generated and collected items during website use:

      1. Understanding connection frequency and collecting service usage statistics

Article 3. Processing and Retention Period of Personal Information

The Company retains and uses the collected personal information within the agreed retention and usage period or the personal information retention and usage period according to the law.

  1. Retention period of personal information items collected through customer consent

    1. Whistleblowing Center submissions

      1. Retention period: 1 year

    2. Corporate Newsletter Subscription:

      1. Retention period: 1 year

    3. Automatically generated and collected items during website use:

      1. Retention period: 6 months

If there is a need to retain customer’s personal information under other laws, such as the Commercial Act, the Company will retain the personal information for the period specified by the relevant law.

  1. Records related to contracts or withdrawal of subscriptions: 5 years (Act on Consumer Protection in Electronic Commerce, etc.)

  2. Records related to payment of fees and supply of goods, etc.: 5 years (Act on Consumer Protection in Electronic Commerce, etc.)

  3. Records related to consumer complaints or dispute resolution: 3 years (Act on Consumer Protection in Electronic Commerce, etc.)

  4. Personal information included in important documents related to commercial books and business operations: 10 years (Commercial Act)

  5. Personal information included in vouchers or similar documents: 5 years (Commercial Act)

Article 4. Procedure and Method of Personal Information Disposal

The company promptly destroys the relevant personal information when it becomes unnecessary, such as when the retention period of personal information agreed upon with the user has elapsed or when the purpose of processing has been achieved.
If it is necessary to continue to retain personal information under other laws despite the expiration of the agreed-upon retention period or the achievement of the processing purpose, the company transfers the relevant personal information to a separate database or stores it in a different location.

The method of personal information disposal is as follows:

  1. Personal information recorded or stored in electronic file form is deleted using technical methods that prevent the recovery of records.

  2. Personal information recorded or stored on paper documents is shredded or incinerated for disposal.

Article 5. Outsourcing of Personal Information Processing

The company entrusts the processing of personal information to ensure smooth personal information business processing as follows:

  1. Website operations

    1. Entity entrusted (delegate): Hyosung TNS

    2. Content of the entrusted business: Website maintenance and system management

    3. When entering into an outsourcing contract, the company specifies matters related to the prohibition of processing personal information for purposes other than the performance of the outsourcing task, technical and managerial protection measures, restrictions on re-outsourcing, supervision and management of the delegate and responsibility for damage compensation, in accordance with Article 26 of the Personal Information Protection Act. The company supervises whether or not the delegate handles personal information securely.
      If the content of the entrusted business or the delegate changes, the company will promptly disclose it through this privacy policy.

Article 6. Third-party Provision of Personal Information

The company generally does not provide customers’ personal information to third parties. In the future, if it is deemed necessary to provide personal information to a third party, the company will obtain separate consent from customers and inform them of the details of the provision through the privacy policy.
However, in the following cases, personal information may be provided within the scope of the purpose for which it was collected without the customer’s consent, in accordance with Article 17 of the Personal Information Protection Act.

  1. When there is a special provision in the law or when it is necessary to comply with legal obligations

  2. When it is deemed necessary for the urgent benefit of the life, body, property of the information subject or a third party

  3. When it is necessary to achieve the legitimate interests of the personal information processor, provided that it is clearly prioritized over the rights of the information subject (limited to cases where there is a clear and reasonable relationship with the legitimate interests of the personal information processor and does not exceed a reasonable range)

  4. In cases of urgent necessity for public safety and well-being, including public hygiene

Article 7. Rights and Obligations of Customers and Legal Representatives and Exercise Methods

Customers have the right to access, correct, delete, and request the suspension of the processing of their personal information from the company at any time.
The exercise of rights related to personal information protection can be done in writing, via email, fax, etc., according to Article 41 of the Enforcement Decree of the Personal Information Protection Act and the company will promptly take appropriate measures.

The exercise of rights can be done through the customer’s legal representative (in the case of children under 14) or a delegated person. In this case, a power of attorney must be submitted.

Requests for correction and deletion of personal information cannot be made if the personal information is specified as a target of collection under other laws.
When exercising the rights of customers, such as inspection, correction, deletion and requests for processing suspension, the company verifies whether or not the one who requests it is the person in question or a legitimate representative.
If a customer requests the correction or deletion of personal information due to errors, the company will not use or provide such personal information until the correction or deletion is completed.

Article 8. Measures to Ensure the Security of Personal Information

The company takes the following measures to ensure the security of personal information:

  1. Administrative measures: Establishment and implementation of internal control plans, education on personal information protection for personnel handling personal information and checks on compliance with security measures standards

  2. Technical measures: Installation of access control systems, encryption of personal information, prevention of computer virus damage using antivirus programs, security devices for personal information transmission on networks using encryption algorithms (SSL), operations of intrusion prevention systems, etc.

  3. Physical measures: Access control in places such as computer rooms and document storage rooms

Article 9 Installation, Operation and Rejection of Automatic Personal Information Collection Devices

The company uses “cookies” that store and retrieve customer information as needed in the operations of the website. Cookies are very small text files sent by the server operating the company’s website to your browser and stored on your computer’s hard drive.

The company uses cookies for the following purposes:

  1. Analysis of connection frequency and visit times, understanding user preferences and interests and tracking user activities

  2. Targeted marketing and provision of personalized services based on event participation levels and visit counts

Customers have the option to choose whether or not to install cookies. Therefore, customers can allow all cookies, confirm each time cookies are stored, or refuse to store all cookies by configuring the options in the web browser.
To reject cookie settings, you can choose the options in the web browser you are using. You have the option to either allow all cookies, confirm each time a cookie is saved or reject the storage of all cookies.

How to configure:

  1. Microsoft Edge: Settings > Cookies and site permissions > Choose setting method

  2. Google Chrome: Settings > Privacy and security > Cookies and other site data > Choose setting method

  3. However, if you refuse to install cookies, there may be difficulties in receiving service benefits.

Article 10. Personal Information Protection Manager and Department in Charge

The company has designated a personal information protection manager and a department in charge of protecting personal information and handling complaints related to personal information processing.

  1. Personal Information Protection Manager

    1. Name: Park Changmo, Manager

    2. Department: Security Team

    3. Email: changmo.park@hyosung.com

  2. Personal Information Handling Department

    1. Name: Jang Yoonho, PM

    2. Department: Security Team

    3. Phone: +82-2-707-7885

    4. Email: jangyoonho@hyosung.com

While using the company’s services, if you have any inquiries, complaints, requests for damage relief or requests for access to personal information related to personal information protection, you can contact the Personal Information Protection Manager or the designated department. We will promptly respond to and handle your inquiries.

Article 11. Remedies for Violation of Customer Rights

If you experience personal information infringement, you can contact the following organizations for damage relief, counseling, etc.:

  1. Personal Information Infringement Report Center (privacy.kisa.or.kr / 118)

  2. Personal Information Dispute Mediation Committee (www.kopico.go.kr / 1833-6972)

  3. Supreme Prosecutors’ Office (www.spo.go.kr / 1301)

  4. National Police Agency (ecrm.cyber.go.kr / 182)

Article 12. Matters Regarding Changes to the Privacy Policy

This Privacy Policy is effective as of June 16, 2025.

Article 1. General Provisions

Hyosung Group (hereinafter referred to as the “Company”) values your personal information and establishes and discloses this privacy policy to guide the procedures and standards for the processing of personal information in accordance with Article 30 of the Personal Information Protection Act. To promptly and smoothly handle related complaints, the Company is taking measures to make it easy for customers to check the privacy policy at any time by disclosing it on the first page of the website.

Article 2. Collection Items and Processing Purposes of Personal Information

The Company collects and uses your personal information within the minimum necessary scope for providing services.

  1. Collection Items

    1. When subscribing to the general newsletter:

      1. Required Information: Name, Email Address

    2. When subscribing to the corporate newsletter:

      1. Required Information: Company Name, Name, Email Address

    3. Automatically generated and collected items during website use:

      1. Connection IP information, service usage records, connection logs, cookies, MAC addresses

  2. Processing Purposes

    1. General Newsletter Subscription:

      1. User Identification, Newsletter Distribution

    2. Corporate Newsletter Subscription:

      1. User Identification, Newsletter Distribution

    3. Automatically generated and collected items during website use:

      1. Understanding connection frequency and collecting service usage statistics

Article 3. Processing and Retention Period of Personal Information

The Company retains and uses the collected personal information within the agreed retention and usage period or the personal information retention and usage period according to the law.

  1. Retention period of personal information items collected through customer consent

    1. General Newsletter Subscription:

      1. Retention period: 1 year

    2. Corporate Newsletter Subscription:

      1. Retention period: 1 year

    3. Automatically generated and collected items during website use:

      1. Retention period: 6 months

If there is a need to retain customer’s personal information under other laws, such as the Commercial Act, the Company will retain the personal information for the period specified by the relevant law.

  1. Records related to contracts or withdrawal of subscriptions: 5 years (Act on Consumer Protection in Electronic Commerce, etc.)

  2. Records related to payment of fees and supply of goods, etc.: 5 years (Act on Consumer Protection in Electronic Commerce, etc.)

  3. Records related to consumer complaints or dispute resolution: 3 years (Act on Consumer Protection in Electronic Commerce, etc.)

  4. Personal information included in important documents related to commercial books and business operations: 10 years (Commercial Act)

  5. Personal information included in vouchers or similar documents: 5 years (Commercial Act)

Article 4. Procedure and Method of Personal Information Disposal

The company promptly destroys the relevant personal information when it becomes unnecessary, such as when the retention period of personal information agreed upon with the user has elapsed or when the purpose of processing has been achieved.
If it is necessary to continue to retain personal information under other laws despite the expiration of the agreed-upon retention period or the achievement of the processing purpose, the company transfers the relevant personal information to a separate database or stores it in a different location.

The method of personal information disposal is as follows:

  1. Personal information recorded or stored in electronic file form is deleted using technical methods that prevent the recovery of records.

  2. Personal information recorded or stored on paper documents is shredded or incinerated for disposal.

Article 5. Outsourcing of Personal Information Processing

The company entrusts the processing of personal information to ensure smooth personal information business processing as follows:

  1. Website operations

    1. Entity entrusted (delegate): Hyosung TNS

    2. Content of the entrusted business: Website maintenance and system management

    3. When entering into an outsourcing contract, the company specifies matters related to the prohibition of processing personal information for purposes other than the performance of the outsourcing task, technical and managerial protection measures, restrictions on re-outsourcing, supervision and management of the delegate and responsibility for damage compensation, in accordance with Article 26 of the Personal Information Protection Act. The company supervises whether or not the delegate handles personal information securely.
      If the content of the entrusted business or the delegate changes, the company will promptly disclose it through this privacy policy.

Article 6. Third-party Provision of Personal Information

The company generally does not provide customers’ personal information to third parties. In the future, if it is deemed necessary to provide personal information to a third party, the company will obtain separate consent from customers and inform them of the details of the provision through the privacy policy.
However, in the following cases, personal information may be provided within the scope of the purpose for which it was collected without the customer’s consent, in accordance with Article 17 of the Personal Information Protection Act.

  1. When there is a special provision in the law or when it is necessary to comply with legal obligations

  2. When it is deemed necessary for the urgent benefit of the life, body, property of the information subject or a third party

  3. When it is necessary to achieve the legitimate interests of the personal information processor, provided that it is clearly prioritized over the rights of the information subject (limited to cases where there is a clear and reasonable relationship with the legitimate interests of the personal information processor and does not exceed a reasonable range)

  4. In cases of urgent necessity for public safety and well-being, including public hygiene

Article 7. Rights and Obligations of Customers and Legal Representatives and Exercise Methods

Customers have the right to access, correct, delete, and request the suspension of the processing of their personal information from the company at any time.
The exercise of rights related to personal information protection can be done in writing, via email, fax, etc., according to Article 41 of the Enforcement Decree of the Personal Information Protection Act and the company will promptly take appropriate measures.

The exercise of rights can be done through the customer’s legal representative (in the case of children under 14) or a delegated person. In this case, a power of attorney must be submitted.

Requests for correction and deletion of personal information cannot be made if the personal information is specified as a target of collection under other laws.
When exercising the rights of customers, such as inspection, correction, deletion and requests for processing suspension, the company verifies whether or not the one who requests it is the person in question or a legitimate representative.
If a customer requests the correction or deletion of personal information due to errors, the company will not use or provide such personal information until the correction or deletion is completed.

Article 8. Measures to Ensure the Security of Personal Information

The company takes the following measures to ensure the security of personal information:

  1. Administrative measures : Establishment and implementation of internal control plans, education on personal information protection for personnel handling personal information and checks on compliance with security measures standards

  2. Technical measures : Installation of access control systems, encryption of personal information, prevention of computer virus damage using antivirus programs, security devices for personal information transmission on networks using encryption algorithms (SSL), operations of intrusion prevention systems, etc.

  3. Physical measures : Access control in places such as computer rooms and document storage rooms

Article 9. Installation, Operation and Rejection of Automatic Personal Information Collection Devices

The company uses “cookies” that store and retrieve customer information as needed in the operations of the website. Cookies are very small text files sent by the server operating the company’s website to your browser and stored on your computer’s hard drive.

The company uses cookies for the following purposes:

  1. Analysis of connection frequency and visit times, understanding user preferences and interests and tracking user activities

  2. Targeted marketing and provision of personalized services based on event participation levels and visit counts

Customers have the option to choose whether or not to install cookies. Therefore, customers can allow all cookies, confirm each time cookies are stored, or refuse to store all cookies by configuring the options in the web browser.
To reject cookie settings, you can choose the options in the web browser you are using. You have the option to either allow all cookies, confirm each time a cookie is saved or reject the storage of all cookies.

How to configure:

  1. Microsoft Edge: Settings > Cookies and site permissions > Choose setting method

  2. Google Chrome: Settings > Privacy and security > Cookies and other site data > Choose setting method

  3. However, if you refuse to install cookies, there may be difficulties in receiving service benefits.

Article 10. Personal Information Protection Manager and Department in Charge

The company has designated a personal information protection manager and a department in charge of protecting personal information and handling complaints related to personal information processing.

  1. Personal Information Protection Manager

    1. Name: Park Changmo, Manager

    2. Department: Security Team

    3. Email: changmo.park@hyosung.com

  2. Personal Information Handling Department

    1. Name: Choi Yeni, Pro

    2. Department: Brand Marketing Team

    3. Phone: +82-2-707-7884

    4. Email: yeni.choi@hyosung.com

While using the company’s services, if you have any inquiries, complaints, requests for damage relief or requests for access to personal information related to personal information protection, you can contact the Personal Information Protection Manager or the designated department. We will promptly respond to and handle your inquiries.

Article 11. Remedies for Violation of Customer Rights

If you experience personal information infringement, you can contact the following organizations for damage relief, counseling, etc.:

  1. Personal Information Infringement Report Center (privacy.kisa.or.kr / 118)

  2. Personal Information Dispute Mediation Committee (www.kopico.go.kr / 1833-6972)

  3. Supreme Prosecutors’ Office (www.spo.go.kr / 1301)

  4. National Police Agency (ecrm.cyber.go.kr / 182)

Article 12. Matters Regarding Changes to the Privacy Policy

This privacy policy is effective from January 26th, 2024.
You can review the previous privacy policy below.

Article 1. General provision

“Personal information” refers to such information about a living individual that can identify said individual, such as name and resident registration number (including information which alone cannot identify a certain individual, but can be easily combined with other information to be used to identify that individual).

“Information principal” refers to a person who can be identified by the processed information and is the principal of that information.

The Company posts the privacy policy on the first screen of the website so that it can be viewed easily at all times. Also, In the event that this Privacy Policy is amended, the Company will post announcements on our corporate website (or notify individual customers).

Each business division may have its own privacy policy to fit its own business characteristics. In this event, the privacy policy of each business division will take precedence, and you are advised to check the privacy policy posted on the website.

Article 2. Personal information items collected and the purposes of using them

The Company processes the minimum personal information necessary for service provision.

  1. Personal information items

    1. name, cell phone number, phone number, fax number, e-mail, country name, Company name, connection IP information, service use record, access log, cookie, MAC address

  2. Purpose of processing

    1. Responding to user inquiries

    2. Dealing with civil complaints including suggestions, complaints and service requests

    3. Delivering notices- Market research, marketing or advertising

    4. Providing stable service and improving quality by analyzing connection frequency, collecting service use statistics, and analyzing users’ service use

Article 3. Processing and retention period of personal information

The Company will destroy any personal information collected immediately after the purpose of collecting and using the personal information has been achieved. However, the following information will be retained for the following reasons for a specified period of time and, if necessary, the consent of the information principal will be obtained.

Items that are automatically generated and can be collected in the process of using the website

  1. Retained items: connection IP information, service use record, access log, cookie, MAC address

  2. Retention period: 6 months or less

  3. Reason for retention: checking connection frequency and collecting service use statistics

Article 4. Destruction of personal information

The Company will immediately destroy any personal information collected once the personal information retention period expires or else the purpose of processing thereof has been achieved.
In the event that personal information needs to be retained pursuant to other laws even if the personal information retention period, to which the information principal consented, has expired, or the purpose of processing thereof has been achieved, the personal information will be moved to a separate database (DB) or storage space.

Methods of destroying personal information are as follows:

  1. Personal information recorded and stored in the form of electronic files must be deleted using a technical method ensuring that the records cannot be reproduced.

  2. Personal information recorded and stored on paper documents must be shredded on the paper shredder or incinerated.

Article 5. Provision of personal information to a third party

The Company will use personal information within the purview of the purposes of collecting personal information, and will not use personal information outside the purview thereof, or provide it to or share it with a third party.

However, exceptions will be made in the following events:

  1. in the event that the consent of the information principal was obtained;

  2. in the event that there are special provisions in other laws;

  3. in the event that prior consent cannot be obtained because the information principal or his/her legal guardian cannot express his/her intention, or his/her address is unknown,and it is clearly deemed urgently necessary for the life, body or pecuniary benefit of the information principal or a third party; and

  4. in the event that it is necessary for statistics and academic research, and personal information is provide in a way that cannot identify individuals

Article 6. Consignment of personal information processing

The Company consigns personal information processing as follows for the sake of efficiency, and if a consignment agreement is entered into according to related laws, matters necessary for safe management of personal information are stipulated.

Website operations

  1. Consignee: Hyosung TNS Inc.

  2. Details of consignment: homepage maintenance, system management, etc.

Article 7. Rights and obligations of the information principal and how to exercise these rights

The information principal may exercise the following rights related to personal information against the Company at any time:

  1. Demanding to view personal information

  2. Demanding that errors be corrected if any

  3. Demanding deletion

  4. Demanding that processing be stopped

Information principals may exercise their rights related to personal information protection by writing, e-mailing or faxing to the Company, and the Company will take necessary measures immediately.

If an information principal demands that errors in personal information be corrected or deleted, the Company will not use or provide that personal information until the correction or deletion has been completed.

Information principals may exercise their rights through their agents like legal guardians or consignees. In this event, the power of attorney must be submitted.

Article 8. Measures to ensure the safety of personal information

The company applies the following measures to ensure the safety of the personal information it retains.

  1. Administrative measures: establishment and enforcement of internal control plans, regular employee education, etc.

  2. Technical measures: installation of access control systems, encryption of important information, using vaccine programs to prevent damages from computer viruses,personal information transmission security systems (SSL) on the network based on encryption algorithms, operation of intrusion prevention systems, etc.

  3. Physical measures: restriction of access to the computer room, data storage room, etc.

Article 9. Chief Privacy Officer

To protect and process personal information, and deal with complaints related the personal information, the Company has the Chief Privacy Officer and the Department in charge of personal information.

  1. Chief Privacy Officer

    1. Name: Yoona Cha

    2. Position: Senior Director

    3. Contact info: 82-2-707-7334

    4. e-mail : zseni@hyosung.com

  2. Department in charge of personal information

    1. Department name: Brand Marketing Team

    2. Person in charge: Yeni Choi

    3. Phone: 82-2-707-7884

    4. e-mail: yeni.choi@hyosung.com

If you need to report personal information intrusion or need consultation, you may contact the following agencies:

  1. Privacy Invasion Reporting Center (privacy.kisa.or.kr)

  2. Cyber Investigation Division, Supreme Prosecutors' Office (www.spo.go.kr)

  3. Cyber Bureau, National Police Agency (ecrm.cyber.go.kr)

Inquiry Top Btn