Privacy Policy
PROTIER Biotech Inc. (the “Company”) complies with applicable data protection laws and regulations, including the Personal Information Protection Act, and has established and disclosed this Privacy Policy to ensure the prompt and effective handling of related inquiries and concerns.
1. Purpose of Collection and Use of Personal Information
The Company processes personal information for the following purposes. The personal information being processed will not be used for purposes other than those stated below. In the event that the purpose of use changes, the Company will take necessary measures, including obtaining separate consent where required.
-
Purpose of Collection and Use: Responding to Customer Inquiries
2. Categories of Personal Information Collected
The Company collects only the minimum personal information necessary to provide its services. You may choose not to consent to the collection of optional information beyond what is required for service provision. The categories and methods of personal information collected by the Company are as follows:
-
Purpose: To Respond to Customer Inquiries
Personal Information Collected: Name, Phone Number, Email Address
Retention and Use Period: Until the purpose of processing is achieved
3. Retention and Use Period of Personal Information
The Company retains and uses personal information until the purpose of processing has been fulfilled. However, personal information may be retained for a certain period where prior consent has been obtained from the data subject or where retention is required by applicable laws and regulations.
-
Purpose: To Respond to Customer Inquiries
Information Collected: Name, Phone Number, Email Address
Retention Period: Until the purpose of processing is fulfilled
In accordance with applicable laws and regulations, where any of the following conditions apply, the retention and use period of personal information shall be until the end of the respective period specified below.
In accordance with the Act on the Consumer Protection in Electronic Commerce, the Company collects the following personal information, and the retention period for each category is as follows:
-
Name, Mobile Phone Number, Email Address: 5 years
Records related to payment and supply of goods/services: 5 years
Records related to consumer complaints or dispute resolution: 3 years
Records related to labeling and advertising: 6 months
Communication confirmation data (computer communications, internet log records, access location tracking data): 3 months
4. Provision of Personal Information to Third Parties
The Company processes personal information only within the scope specified for its intended purposes and provides personal information to third parties only where it falls under Articles 17 and 18 of the Personal Information Protection Act, such as with the consent of the data subject or where required by law. In all other cases, the Company does not provide personal information to third parties. Currently, the Company does not provide personal information to any third parties.
5. Outsourcing of Personal Information Processing
The Company does not outsource the processing of personal information to third parties.
6. Procedures and Methods for the Destruction of Personal Information
-
In principle, the Company will promptly destroy personal information when it is no longer necessary, such as upon fulfillment of the purpose of processing or upon expiration of the retention and use period.
-
The procedures and methods for the destruction of personal information are as follows:
(1) Destruction Procedures:
Personal information subject to destruction is destroyed in accordance with internal policies under the responsibility of the Chief Privacy Officer.
(2) Destruction Methods:
Personal information stored in electronic file format is deleted using technical methods that prevent the records from being recovered. Personal information printed on paper is destroyed by shredding or incineration.
7. Installation, Operation, and Refusal of Automatic Personal Information Collection Devices
The Company does not use cookies that store and retrieve information about website users.
8. Rights and Obligations of Data Subjects and Their Legal Representatives, and Methods of Exercise
Data subjects may exercise the following rights:
(1) Right to Access Personal Information:
Users may request access to the personal information held by the Company. However, such access may be restricted where disclosure is prohibited or limited by law, or where it may pose a risk to the life or safety of another person, or unjustly infringe upon the property or other interests of others.
(2) Request for Correction or Deletion of Personal Information:
Users may request the correction or deletion of personal information held by the Company. However, where such personal information is required to be collected under other applicable laws, deletion may not be requested.
(3) Withdrawal of Consent or Request for Suspension of Processing:
Users may request the suspension of processing of their personal information held by the Company or withdraw their consent to the processing of such personal information. However, such requests may be denied where access is prohibited or restricted by law, where it may pose a risk to the life or safety of another person, or unjustly infringe upon the property or other interests of others. Such requests may also be denied where suspension of processing would make it difficult to fulfill contractual obligations, such as providing agreed services to the data subject, and the data subject has not clearly expressed an intention to terminate the contract.
Users may exercise their rights through a representative (such as a legal representative or an authorized agent). In such cases, a power of attorney in the form prescribed by Form No. 11 of the “Notice on Personal Information Processing Methods” must be submitted in accordance with the method specified by the Company (e.g., email or fax).
9. Measures to Ensure the Security of Personal Information
-
The Company implements the following measures to ensure the security of personal information:
(1) Administrative Measures:
Minimization of personnel with access to personal information, establishment of internal management plans (planned), and regular employee training.
(2) Technical Measures:
Access control to personal information processing systems, implementation of access control systems, and encryption of unique identification information.
(3) Physical Measures:
Access control to storage rooms and secure storage of documents and auxiliary storage media containing personal information in locked locations.
10. Chief Privacy Officer
The Company designates a Chief Privacy Officer, as set forth below, to oversee personal information processing and to handle complaints and provide remedies for damages related to personal information processing.
(1) Chief Privacy Officer
Name: Hyuntae Kim
Title: Chief Executive Officer
Contact: contact@protierbiotech.com
(2) Department in Charge of Personal Information Protection
Department: New Drug Research Institute
Contact Person: Jihyun Lee
Contact: contact@protierbiotech.com
Users may contact the Chief Privacy Officer regarding any inquiries, complaints, or remedies related to personal information protection arising from the use of the Company’s services. The Company will respond to such inquiries without delay.
In addition, the Company is committed to ensuring the data subject’s right to informational self-determination and to providing consultation and remedies for personal data breaches. If you require reporting or consultation, please contact the Chief Privacy Officer listed above.
Remedies for Infringement of Users’ Rights
Users may contact the following organizations for consultation or remedies regarding personal information infringements. These organizations are independent of the Company. If you are not satisfied with the Company’s response to your personal information-related complaints or require further assistance, please contact the organizations listed below.
(1) Personal Information Dispute Mediation Committee
-
Website: www.kopico.go.kr
-
Tel: +82-1833-6972
(2) 개인정보침해신고센터 (한국인터넷진흥원 운영)
-
소관업무: 개인정보 침해사실 신고, 상담 신청
-
홈페이지: privacy.kisa.or.kr
-
전화번호: (국번 없이) 118
(3) 대검찰청 사이버범죄수사과
-
홈페이지: www.spo.go.kr
-
전화번호: (국번 없이) 1301
(4) 경찰청 사이버안전지킴이
-
전화번호: (국번없이) 182
The Company is committed to providing consultation and remedies for personal information infringements. If you require reporting or consultation, please contact the Chief Privacy Officer listed above.
11. Requests for Access to Personal Information
Data subjects may submit requests for access to their personal information pursuant to Article 35 of the Personal Information Protection Act to the department listed below. The Company will endeavor to process such requests promptly.
※ Department responsible for receiving and processing access requests: Same as the department in charge of personal information protection
12. Changes to this Privacy Policy
In the event of any amendments to this Privacy Policy, the Company will provide notice through its website. The revised Privacy Policy shall take effect seven (7) days from the date of such notice.
Supplementary Provision (Effective Date): This Privacy Policy shall take effect on July 15, 2024.