GREEN CROSS

Search
Keyword Search
Plasma Derivatives Office Vaccines Subsidiary Pipeline R&D Media Stock Company Recruit
Product Search
close
Total Menu KOR
close

Green Cross Policy on Privacy & Personal Information

Article 1 (Details of Collection and Use of Personal Information)

  1. (1) Who collects and utilizes personal information: The Company itself collects and manages personal information on the users of its website. The Company is responsible for the management of personal information it collects.
  2. (2) Personal information collected: first and last names, email addresses, and details on curriculum vitae (CVs) and resumes.
  3. (3) Channel through which information is collected: the Company website.
  4. (4) Right to withhold consent from the collection of personal information: Users reserve the right to withhold their consent to the Company collecting and handling said personal information. The Company, however, requires such information in order to handle and process user requests. The Company therefore cannot inform users of the outcomes of their requests in the absence of such information. Refusal to provide personal information therefore may result in limited service in relation to customer requests and reports.
  5. (5) The following items of personal information may be generated and collected automatically as users access the Company’s website and Internet services: IP addresses, cookies, MAC addresses, service access histories, webpage visit histories, etc.

Article 2 (Purposes for Collecting and Utilizing Personal Information)

The Company collects and handles users’ personal information for a number of purposes. The Company does not use such personal information for purposes other than the ones listed herein. Pursuant to applicable law, the Company will inform users and seek their consent to any changes that are made to the purposes listed herein:
  1. (1) Checking the facts and details of user requests;
  2. (2) Contacting users to confirm the details of their requests; and
  3. (3) Contacting users to inform them of the outcomes of their requests.

Article 3 (Retaining Period for Personal Information)

The Company, in principle, deletes and disposes of all personal information it has collected without delay upon fulfilling the purposes for which the information was collected and used. However, the Company retains the following types of personal information for the stated periods of time:
  1. (1) Information collected via the “Contact Us” feature: one year following the date on which the request was made.
  2. (2) Information collected via the “Recruit” feature:
    • - Personal information on employees that have been hired: From the date the employees indicated their consent to the final date of their employment/service at the Company.
    • - Personal information on jobseekers that have not been hired: For five years following the date of their job application.
  3. (3) Information involved in an investigation over alleged violation of the law: Until the end of said investigation.
  4. (4) Records confirming communications, as defined by Article 41 of the Protection of Communications Secrets Act: Data on computer communications, Internet logs, and data on points of access traced, all to be kept for three months.

Article 4 (Sharing Personal Information with Third Parties)

The Company collects and handles users’ personal information only within the parameters set by Article 2 above. The Company shares this personal information with authorized third parties, listed below, only when necessary to do so to process user requests, and only with users’ own consent and/or as required by law.
  1. (1) Details of personal information shared: contact information, email addresses, and other types of personal information provided by job applicants for the recruiting process.
  2. (2) Recipients of personal information: Green Cross Medical Science Corporation, Green Cross Engineering Maintenance Corporaion, Green Cross WellBeing Corporaion, Green Cross Healtcare Corporation, Green Cross Lab Cell Corporation, Green Cross Cell Corporation, Green Cross Genome Corporation, Green Cross HK Holdings Limited Corporation, Green Cross China Corporation, 格林克 Corporation, Green Cross North Amerian Corporation, Green Cross Biotherapeutics Inc Corporation, GCAM, Inc Corporation
  3. (3) Purposes for sharing personal information:
    • - Information collected via the “Contact Us” feature: To process user inquiries and requests.
    • - Information collected via the “Recruit” feature: To facilitate the recruiting process.
  4. (4) Periods for which third parties may use and retain personal information: Third parties are to delete and dispose of any personal information they have received from the Company immediately upon fulfilling the purposes for which such information was required. Hiring companies do not collect more information on job applicants, or share with other third parties, than is necessary for recruiting and hiring purposes.

Article 5 (Commissioned Handling of Personal Information)

The Company does not commission the handling of users’ personal information to a third party or third parties without first informing users and obtaining their consent.

Article 6 (User Rights and Obligations)

  1. (1) Users who provide personal information to the Company may exercise the following rights at any time with the Company concerning their personal information:
    1. 1. The right to view one’s own personal information;
    2. 2. The right to request that one’s own personal information be corrected or updated; and
    3. 3. The right to demand the deletion of one’s own personal information.
  2. (2) Users may exercise their rights, as per Paragraph (1) above, in written form (form provided in Document Form 8 attached to the PIPA Enforcement Rules) via e-mail, fax, and other such means of communication, after which the Company shall comply without delay.
  3. (3) The Company shall not use or share with third parties any of the personal information whose updating or correction has been requested by the user until said updating or correction is completed.
  4. (4) Users may exercise their rights, as per Paragraph (1) above, using someone with power of attorney or other parties duly authorized by users to act on their behalf. In such situations, however, users must submit the power of attorney in the form provided by Document Form 11 of the PIPA Enforcement Rules.

Article 7 (Disposal of Personal Information)

  1. (1) The Company shall delete and dispose of users’ personal information without delay upon the fulfillment of the purposes for which it was collected and used and/or upon expiration of the terms for which such information was retained.
  2. (2) The process for disposal is as follows.
    1. 1. Procedure: The Company, in principle, shall dispose of personal information without delay upon the fulfillment of the purposes for which such information was originally obtained, or upon expiration of the terms for which such information is to be retained in accordance with Company policy. The Company shall not retain any personal information longer than otherwise required by law.
    2. 2. Method: The Company shall dispose of personal information in the form of electronic or digital files using technology that makes such information irretrievable. The Company shall dispose of personal information printed on paper by shredding and/or incinerating it.

Article 8 (Measures to Ensure the Security of Personal Information)

The Company takes the following measures to ensure the security of personal information.
  1. 1. Management measures: Establishing and implementing internal plans for managing personal information;
  2. 2. Technical measures: Restricting access to the personal information processing systems, installing access-control systems, encrypting personal identification information, installing security programs, etc., as required by law; and
  3. 3. Physical measures: Restricting access to the computer room and the data center.

Article 9 (Technical and Management Measures for Protecting Personal Information)

In an effort to protect users’ personal information against loss, theft, unauthorized disclosure, forgery or damage, the Company has taken the following technical and management measures.
  1. (1) To prevent hacking: The Company strives to protect users’ personal information against all digital risks and threats, including hacking and viruses. The Company uses the latest anti-virus programs to prevent unauthorized access to, disclosure of, and damage to this information. The Company uses encrypted communications and other such measures to ensure secure transmission of information along cyber networks. The Company also uses access-blocking systems to prevent unauthorized access from outside parties, and continues to acquire and adopt the best available technical measures to ensure systemic security.
  2. (2) Education and training of authorized personnel: The Company also regularly educates and trains personnel authorized to handle users’ personal information, emphasizing the importance of compliance with Company policy on protecting that information.

Article 10 (Technology for Automatic Collection of Personal Information and Withholding Consent)

  1. 1. Cookies: In an effort to personalize and optimize services for individual users, the Company employs cookies that collect, store and retrieve users’ personal information. Cookies are very small text files that the server on which the Company’s website is run sends to, and collects back from, user browsers, and are therefore saved on users’ hard disks. When a user returns to the Company website, the Company’s website server detects cookies stored on the user’s hard disk to maintain the user’s personalized settings and provide customized services. Cookies are not used to collect personal identification information automatically. Users nonetheless can delete the cookies saved on their hard disks at any time or refuse to receive cookies.
  2. 2. Purposes for which the Company uses cookies: The Company uses cookies to enhance user experience on its website and process user requests.
  3. 3. Utilization of cookies and withholding consent: Users reserve the right to decide whether they would like to receive cookies. Users can change the settings on their web browsers, either to permit all cookies, to have the web browser inform them every time a cookie is saved, or to refuse all cookies. Refusing to receive cookies, however, may lead to some delay or inconvenience during use of the services on the Company website. Below is a description of the process for changing the cookie settings on Internet Explorer:
    • a. Go to “Tools” and click “Internet Options.”
    • b. Click the “Privacy” tab.
    • c. Adjust the level of rigor you want to be applied before cookies are saved on your hard disks.

Article 11 (Withdrawing Consent to the Collection and Use of Personal Information)

  • - Users may always access, view, and update their personal information kept by the Company via the Company website. They may also request deletion of their personal information by e-mailing the website administrator.
  • - Users may at any time withdraw their consent to the collection, use, and sharing of their personal information by the Company by e-mailing their request to the website administrator.
  • - The Company employs specific personnel to protect personal information and process related user requests. These personnel are described in Article 12.

Article 12 (Personal Information Protection Personnel)

In order to oversee all tasks relating to personal information and process user requests regarding their personal information, the Company employs the following personal information protection personnel:

Article 12 (Personal Information Protection Personnel)

In order to oversee all tasks relating to personal information and process user requests regarding their personal information, the Company employs the following personal information protection personnel:
Personal Information Protection Officer
  • Department: Information System Office
  • Name: Jang Ae-gyeong (Standing Director)
  • Tel.: +82-31-260-9333
  • Email: chsung@greencross.com
Personal Information Protection Manager
  • Department: Information System Office (Software Management Team)
  • Name: Seong Chang-hun (Team Manager)
  • Tel.: +82-31-260-9333
  • Email: chsung@greencross.com
Personal Information Operation Manager
  • Department: EA Office (Communications Team)
  • Name: Jeong Hye-woon
  • Tel.: +82-31-260-0758
  • Email: libra9771@greencross.com

Article 13 (Remedy for Violation of Rights)

Users who provide personal information may consult the organizations listed below regarding legal remedies available for any violations of their right to privacy:
  1. 1. Privacy Violation Reporting Center (run by S.Korea Internet and Security Agency, or KISA): privacy.kisa.or.kr / Tel. +82-118
  2. 2. Arbitration Committee for Privacy Violation Disputes (run by KISA): privacy.kisa.or.kr / Tel. +82-118
  3. 3. Supreme Prosecutor’s Office, Cyber Crime Investigation Squad: www.spo.go.kr / Tel. +82-2-3480-3573
  4. 4. National Policy Agency Cyber Terrorism Response Center: www.netan.go.kr / Tel. +82-1566-0112

Article 14 (Notification of the Policy on Privacy and Personal Information)

This Policy on Privacy and Personal Information was last updated on June 30, 2014. When it is necessary to adjust this Policy due to legal or technological changes in the future, the Company shall announce the details and reasons for Policy adjustments on its website at least seven days prior to making said changes.

Announced and effective as of April 6, 2017