Privacy Policy

Chemgas Korea Co., Ltd. (hereinafter referred to as the 'Company') establishes and discloses the following Privacy Policy in order to protect the personal information of the data subject in accordance with Article 30 of the Personal Information Protection Act and to promptly and smoothly handle related complaints.

Through this Privacy Policy, the Company informs you about the purposes and methods for which the personal information you provide is being used, and what measures are being taken to protect personal information.

• The Company has established a procedure where you can click the "Agree" or "Disagree" button regarding the terms of use of the Chemgas Korea Co., Ltd. website (www.chemgas.co.kr, hereinafter referred to as the 'Website'). Clicking the "Agree" button is deemed as consent to the collection of personal information.

• The Company processes personal information for the following purposes. The processed personal information will not be used for purposes other than the following, and in the event of a change in the purpose of use, the Company plans to implement necessary measures, such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.

• Category	Mandatory Collection Items	Optional Collection Items	Purpose of Use
  Reporting Center	Full Name, E-mail	Phone Number	Confirmation of report details and notification of results

• The Company processes and retains personal information within the period of retention and use prescribed by law or the period of retention and use consented to by the data subject at the time of collection. The retention period for personal information collected on the Company's website is as follows. Personal information collected through various consultations and reports will be destroyed after 6 months following the report or consultation.

• ▶ Reporting Center (Unethical Conduct Reporting, Abuse of Power Reporting, Workplace Harassment/Sexual Harassment Reporting, Fair Trade Consultation and Reporting, etc.)

  • Collection Method : Directly entered by the customer on the website
  • Basis for Operation : Data Subject Consent
  • Retention Period : 6 months after the report or consultation

• Upon destruction, the Company's website immediately destroys your personal information using a method that makes reproduction impossible (and instructs the third party to destroy it if personal information was provided to a third party). However, in the following cases, personal information is retained for the period specified in each subparagraph:

  1. Where there is a need for retention pursuant to the provisions of laws such as the Commercial Act, transaction details and minimal basic information are retained for the period prescribed by law.

  2. Where the retention period is notified to you in advance and that retention period has not elapsed, or where separate consent has been individually obtained from you, the information is retained for the agreed-upon retention period.

• The Company's website, in principle, processes the data subject's personal information within the scope specified for the purpose of collection and use, and will not process it beyond the original scope of purpose or provide it to a third party without the prior consent of the data subject, except in the following cases:

• 1. Where separate consent is obtained from the data subject.

  2. Where there is a special provision in the law.

• 1. The Company's website outsources personal information processing tasks as follows for smooth handling of personal information affairs

     Consignee	Outsourced Work	Required Item/Term
     Threedays	Website Maintenance	Until the termination of the consignment contract

  2. When concluding a consignment contract, the Company's website, in accordance with Article 25 of the Personal Information Protection Act, specifies matters concerning the prohibition of processing personal information beyond the purpose of the consigned task, technical and administrative protective measures, restriction on sub-consignment, management/supervision of the consignee, liability for compensation for damages, etc., in documents such as the contract, and monitors whether the consignee processes personal information securely. When concluding a consignment contract, the Company's website, in accordance with Article 25 of the Personal Information Protection Act, specifies matters concerning the prohibition of processing personal information beyond the purpose of the consigned task, technical and administrative protective measures, restriction on sub-consignment, management/supervision of the consignee, liability for compensation for damages, etc., in documents such as the contract, and monitors whether the consignee processes personal information securely.

  3. If the content of the consigned work or the consignee changes, we will disclose it without delay through this Privacy Policy.

• 1. The data subject may exercise the following rights related to personal information protection against the Company at any time:
     1. Request for access to personal information
     2. Request for correction if there are errors, etc.
     3. Request for deletion
     4. Request for suspension of processing

  2. The exercise of rights pursuant to Paragraph 1 can be done in writing, by phone, e-mail, or facsimile (FAX) after completing the form in Annex No. 8 of the Enforcement Rule of the Personal Information Protection Act, and the Company will take action without delay.

  3. If the data subject requests correction or deletion of errors, etc., in personal information, the Company will not use or provide the personal information until the correction or deletion is completed.

  4. The exercise of rights pursuant to Paragraph 1 may be done through an agent, such as the data subject's legal representative or a person who has been delegated authority. In this case, a power of attorney pursuant to the form in Annex No. 11 of the Enforcement Rule of the Personal Information Protection Act must be submitted.

  5. The data subject must not violate the Personal Information Protection Act or other relevant laws and regulations by infringing upon the personal information and privacy of the data subject themselves or others that the Company is processing.

  6. The procedure for raising an objection to challenge the refusal of a data subject's request for access, correction, deletion, or suspension of processing is as follows:
     1. When the personal information management department postpones or refuses a request for access, etc., the department shall notify the data subject of the justifiable reasons and the method for raising an objection within 10 days from the date the request was received.
     2. The personal information management department receives and accepts the data subject's objection application (in writing, by phone, or email); the person in charge of personal information verifies the details.
     3. The personal information management officer performs the final review of the processing result.
     4. The personal information management department notifies the data subject of the processing result.
       * [Attachment No. 8 of the Enforcement Rule of the Personal Information Protection Act] Request Form for Personal Information (Access, Correction/Deletion, Suspension of Processing)   * [Attachment No. 11 of the Enforcement Rule of the Personal Information Protection Act] Power of Attorney

• In handling your personal information, the Company's website takes the following technical measures to ensure security against loss, theft, leakage, falsification, or damage of personal information:

  1. Your personal information is protected by a password, and important data is protected through a separate security function by encrypting file and transmission data or using a file lock function.

  2. The Company's website is taking measures to prevent damage caused by computer viruses by using vaccine programs. The vaccine programs are updated periodically, and in the event of a sudden virus outbreak, the corresponding vaccine is provided immediately upon its release to prevent personal information infringement.

  3. The Company's website adopts security devices (SSL or SET) that can securely transmit personal information over the network using encryption algorithms.

  4. To prevent the leakage of your personal information due to hacking, etc., the Company uses devices to block intrusion from the outside and installs intrusion detection systems on each server to monitor intrusions 24 hours a day.

• The Company processes the following categories of personal information:

  1. Mandatory Items : Full Name, E-mail

  2. Optional Items : Phone Number

  3. The following categories of personal information may be automatically generated and collected during the use of the service:
     - IP address, cookies, MAC address, service usage records, visit records, records of improper use, etc.

• The Company's website operates 'cookies' that frequently store and retrieve your information. The personal information collected by the Company's website through cookies is limited to (e.g., page view status), and no other information is collected. The personal information collected by the Company's website through cookies is used for the following purposes: It analyzes the frequency of access to the Company's website and visit time, understands user preferences and interests, and utilizes this as a basis for target marketing and service reorganization.

• It is used as material to assess your participation level and number of visits in various events conducted by the Company's website, to grant differential opportunities to apply, and to provide differentiated information based on individual interests.

• You have the choice regarding cookies. You can allow all cookies, require confirmation every time a cookie is stored, or refuse the storage of all cookies by selecting [Tools] > [Internet Options] > [Security] > [Custom Level] in your web browser.

• The Company processes the following categories of personal information:

  1. The Company destroys the personal information without delay when it becomes unnecessary, such as upon the expiration of the personal information retention period or the achievement of the purpose of processing.

  2. If personal information must be retained continuously in accordance with other laws and regulations despite the expiration of the personal information retention period consented to by the data subject or the achievement of the purpose of processing, the personal information will be moved to a separate database (DB) or stored separately.

  3. The procedure and method for the destruction of personal information are as follows:

     • Destruction Procedure
       The Company selects personal information for which a reason for destruction has occurred and destroys the personal information after obtaining approval from the Company's Personal Information Protection Officer.

     • Destruction Method
       Personal information recorded and stored in electronic file format is destroyed using technical methods that prevent the record from being reproduced, and personal information recorded and stored in paper documents is destroyed by shredding or incineration.

• The Company takes the following measures to secure the safety of personal information:

  1. Administrative Measures : Establishment/implementation of internal management plans, regular employee training, etc.

  2. Technical Measures : Management of access rights to personal information processing systems, installation of access control systems, encryption of unique identification information, installation of security programs.

  3. Physical Measures : Access control for computer rooms, data storage rooms, etc.

• To protect your personal information and handle complaints related to it, the Company's website has a Personal Information Manager to manage your personal information and has established a channel through which you can submit opinions and complaints regarding personal information protection. If you have any inquiries or complaints regarding your personal information, please contact the Personal Information Manager below, and we will take immediate action and notify you of the result.

• • Personal Information Manager

  Name : Nam Jae Wook Department : Management Support Team Position : HR Manager Contact : +82-2-557-8001 E-mail : jaewook.nam@chemgas.co.kr

※ The Personal Information Protection Manager is responsible for personal information protection on the company's official website.

• Data subjects may contact the following organizations for remedies, consultations, etc., regarding personal information infringement. These organizations are separate from the Company. If you are not satisfied with the Company's own personal information complaint handling or damage relief results, or if you need more detailed assistance, please contact them.

• • Korean National Police Agency Cyber Bureau

  Website : cyberbureau.police.go.kr Phone : 182 (without area code)

• • Supreme Prosecutors' Office Cyber Crime Investigation Department

  Website : www.spo.go.kr Phone : +82-2-3480-3573

• The data subject may request access to their personal information pursuant to Article 35 of the Personal Information Protection Act from the department listed below. The Company will strive to ensure that the data subject's request for access to personal information is processed promptly.

• [Department for Receiving and Handling Requests for Access to Personal Information]

  Department : Management Support Team Name : Nam Jae Wook Contact : +82-2-557-8001 E-mail : jaewook.nam@chemgas.co.kr

• This Privacy Policy shall take effect from 2025.10.00. Should there be any additions, deletions, or corrections to the content due to changes in laws or policies, the Company will provide notification through an announcement 7 days prior to the enforcement date of the changes. Previous versions of the Privacy Policy can be found below.