LG Chem, Ltd. (hereinafter referred to as “Company”) establishes and discloses the personal information handling policies in order to protect personal information of information subjects under The Federal Privacy Act 1988 and handling related complaints promptly and smoothly as follows:
Article 1. Purpose of Handling Personal Information
The Company handles personal information for each of the following purposes. The personal information being handled shall not be used for purposes other than each of the following purposes. In the event that there is a change in the purposes of use, the Company will take necessary measures by obtaining independent consent, etc. pursuant to Article 18 of the Personal Information Protection Act:
- (a) To allow information subjects to subscribe to membership
- (b) To introduce and provide education and training for the Company’s ESS products
- (c) Providing benefits by sales performance of information subjects and
- (d) Having smooth communications with information subjects.
Article 2. Period for Handling and Retaining Personal Information
- The Company shall handle and retain personal information during the personal information retention and use period under the laws, or within the personal information retention and use period consented by information subjects when personal information is collected. In this respect, the independent provisions of the “Consent to Collection, Use, and Provision, etc. of Personal Information” shall apply.
- The personal information of information subjects shall be saved on the Company’s DB located in the Republic of Korea, and shall be used to manage benefits by sales performance and provide product information provided, however, that where an information subject desires to have his or her personal information deleted, the Company shall delete relevant personal information without delay.
Article 3. Provision of Personal Information to Third Parties
The Company shall handle the personal information of information subjects to the extent specified in Article 1 (Purpose of Handling Personal Information), and shall not be provided to third parties, other companies or organizations.
However, where there is a legal request by governmental authorities handling personal information, or where information subjects give prior approval thereof, the Company may provide personal information to other persons or other companies or institutions.
Article 4. Entrustment for Handling Personal Information
The Company entrusts a third party to handle personal information in order to smoothly perform duties for personal information as follows:
- * Entrusted Company (Subcontractor)- LG CNS Co., Ltd.
- * Content of Duties Entrusted- System management, maintenance and repair
- When the Company enters into an agreement for entrustment, according to Articles 26 of the Personal Information Protection Act, it specifies in a written agreement or document the prohibition of handling personal information for purposes other than the purpose of performing entrusted duties, technical and managerial protection measures, restrictions on re-entrustment, management and supervision for entrusted company, and liabilities of compensation for damages, etc., and supervises entrusted companies to monitor whether they are safely handling personal information.
- In the event that there is a change in the content of entrusted duties or entrusted entities, the Company will disclose such a change through the Personal Information Handling Policies without delay.
Article 5. Rights and Obligations of Information Subjects, and Exercise Methods
Information subjects may at any time exercise each of the following personal information protection related rights in relation to the Company:
- (a) To request the Company to allow them to get access to personal information
- (b) To request the Company to make corrections for errors, etc.
- (c) To request the Company to delete relevant personal information and
- (d) To request the Company to discontinue handling of personal information.
- The rights in Section 1 may be exercised in writing, by telephone, email, fax, etc. in relation to the Company, and the Company shall take measures for the requests without delay after passing identity verification procedures.
- In the event that an information subject has requested the Company to make corrections for errors, etc. of personal information or delete relevant personal information, the Company shall not use or provide the personal information until it completes making corrections or deleting relevant personal information.
- The rights in Section 1 may be exercised by an agent, such as an information subject’s legal representative or a delegated person, etc. In this case, a Power of Attorney shall be submitted in the form of the Appendix no. 11 of the Enforcement Rules of the Personal Information Protection Act.
- Information subjects shall not infringe upon their own or a third party’s personal information or privacy being handled by the Company by violating relevant laws, including the Personal Information Protection Act.
Article 6. Items of Information Subjects to be Handled
The Company handles the following personal information items.
For membership subscription
- Items to be collected: email, password, company name, company’s representative’s name, number of employees, company telephone number, company address
- Purpose of collection: managing members (verifying identities for use of membership services, identifying individuals, preventing wrongful use by recalcitrant members, preventing unauthorized uses, verifying intentions to subscribe to membership, subscriptions and number of subscriptions, restrictions on person who have not accessed to services for a long time, giving notifications), providing benefits by sales performance
- Items to be collected: system use details, cookies, access logs, access IPs, access device unique numbers (mobile)
- Purpose of collection: verifying normal access routes
- Refusal of Cookies: information subjects may disable cookies or similar devices or tools under Article 9.
Article 7. Destruction of Personal Information
- The Company shall destroy relevant personal information when it became unnecessary because the personal information retention period had lapsed, the handling purpose had been accomplished, or an information subject had made a request for destruction, etc.
- In the event that although the personal information retention period consented to by an information subject has lapsed or the handling purpose has been accomplished, it is required to continue to retain personal information under other relevant laws, the Company shall retain personal information in a different location for custody.
The procedures and methods for destruction of personal information shall be as follows:
- (a) Destruction procedures: the Company shall destroy relevant personal information by selecting personal information for which a ground for destruction has occurred and obtaining approval from the personal information protection manager.
- (b) Destruction methods: the personal information recorded or saved in an electronic file format is to be deleted with the use of technical methods in which the records cannot be regenerated. The personal information recorded or saved in paper documents is to be shredded by paper shredders or destroyed by way of incineration.
Article 8. Measures to Secure Safety of Personal Information
The Company takes the following measures to secure safety of personal information:
- Managerial measures: establishing and implementing internal management plans, providing regular education and training for employees, etc.
- Physical measures: controlling access to computer rooms, materials retention rooms, etc.
Article 9. Purpose and Refusal of Automatic Collection of Personal Information
Purpose of using cookies, etc.
- (a)Using cookies to improve services by figuring out the frequencies of access or visitation hours, etc. of users
Installation and Refusal of Cookies
- (a) Users have the options to install cookies. Therefore, as for how to refuse the installation of cookies, a user may allow all cookies by selecting an option in his or her web browser, confirm cookies whenever they are saved, or refuse the saving of all cookies.
- (b) Method to install cookies (for the Internet Explorer): Tool in the upper side of the web browser > Internet Option > Personal Information > Advanced > Setting up whether to allow cookies
Article 10. Personal Information Protection Manager
The Company has designated a personal information protection manager to generally manage duties on handling of personal information and handling complaints and recover damages for information subjects with respect to handling of personal information as follows:
Personal Information Protection Management Director
- ① Department Name: LG Chem Information Security Department
- ② Name: Jaeik Baek
Personal Information Protection Management Department
- ① Department Name: LG Chem Security Audit Team
- ② Name: Ukhyeon Kim
- ③ Tel: +82-2-3773-0981
- ④ Email: firstname.lastname@example.org
Personal Information Handlers
- ① Department Name: LG Chem ESS Battery Division
- ② Name: Youngmin Kim
- ③ Tel: +82-2-3773-6967
- ④ Email: email@example.com
- Information subjects may ask inquiries to the personal information protection management department with respect to all personal information related questions, handling of complaints, recovery of damages, etc. that arise while information subjects use the Company’s services (or businesses). The Company will give answers and handle complaints, etc. without delay as to information subjects’ inquiries.
Article 11. Change of Personal Information Handling Policies
These Personal Information Handling Policies shall be applicable from 01. 04, 2016.