PRIVACY POLICY OF BK ELECTRONICS (REVISED ON JUNE 25, 2021)

BK Electronics (hereinafter called “the Company) establishes and discloses the following Privacy Policy in accordance with Article 30 of the Personal Information Protection Act in order to protect personal information of “individuals who are identifiable by the information processed hereby to become the subject of that information” (hereinafter called “data subject(s)”) and to make prompt and appropriate responses to any grievances about personal information.

[ARTICLE 1]PURPOSES OF PROCESSING PERSONAL INFORMATION

① The Company collects and processes personal information for the following purposes. The personal information processed will not be used for other purposes than the specified, and any change in the specified purposes will require necessary steps under Article 18 of the Personal Information Protection Act, such as prior consent by data subjects

② Personal information is processed for the following purposes.

– To handle customers’ email inquiries
– Processing new partner proposals

[ARTICLE 2]PERIOD OF PERSONAL INFORMATION PROCESSING AND RETENTION

The personal information processed is retained until a customer’s email inquiry, report through the Ethics Helpline or proposal of new partnership is completely settled. Other records including those on contracts, payments and consumer disputes, however, are stored separately in accordance with applicable laws.

[ARTICLE 3]SHARING OF PERSONAL INFORMATION WITH THIRD PARTIES

The personal information collected pursuant to the Privacy Policy is processed only for the purposes and scopes specified in Article 1, but may be shared with third parties in the cases under Article 17 of the Personal Information Protection Act, such as cases agreed upon by data subjects or stipulated by applicable laws.

[ARTICLE 4]OUTSOURCING OF PERSONAL INFORMATION PROCESSING

In order to improve the service, the company may entrust external specialized companies with the processing of users’ personal information, and in accordance with the relevant statutes, it stipulates necessary matters so that personal information can be safely managed.

[ARTICLE 5]RIGHTS AND OBLIGATIONS OF DATA SUBJECTS, AND HOW TO EXERCISE THE RIGHTS

① A data subject (his/her legal representative in the case of a minor aged under 14) may at any time exercise his/her right by making a request to the Company regarding any of the following matters.

– Request to view personal information
– Request to correct inaccurate personal information
– Request to delete personal information
– Request to suspend processing personal information

② A data subject may exercise the right under Paragraph 1 by making a request to the Company in writing or by telephone, e-mail or fax, and the Company will take prompt steps upon receiving such a request.

③ The Company, when requested from a data subject to correct or delete personal information for its inaccuracy or other reasons, will not use or provide such information until the correction or deletion is completed.

④ The right under Paragraph 1 may be exercised by a data subject’s legal representative or other agents authorized to act for the data subject. In this case, the representative or agent shall submit a designated power of attorney (Form 11 attached to the Enforcement Decree of the Personal Information Protection Act).

⑤ A data subject shall not infringe on the privacy of the subject whose information is processed by the Company or other people by violating the Personal Information Protection Act or other relevant laws.

[ARTICLE 6]INSTALLATION AND OPERATION OF PERSONAL INFORMATION AUTOMATIC COLLECTION TOOLS, AND REFUSAL THERE OF

① The Company may install and operate web cookies to store and search the information of customers who use the services on the Company’s website. A web cookie is a string of data that a server sends to the user’s web browser, and the browser may store it and send it back with the next request to the same server. The cookies stored in the user’s browser allow the user to use the services on the website without entering additional information like user’s name.

② The information the Company collects through web cookies includes user’s name, e-mail address and contact numbers, but other data than such information is not to be collected. The information collected through cookies by the Company may be used for the following purposes.
– To search the contents visited by the user in order to provide the user with customized services when he/she logs on to the website later
– To analyze the patterns of users so as to make improvements in services
– To use the data in updating the website

[ARTICLE 7]ITEMS OF PERSONAL INFORMATION TO BE PROCESSED

The items to be collected and processed by the Company are as follows.

① To handle customer inquiries
– Name
– Contact information
– E-mail address

② When processing new partner proposals
– Name of representative and person in charge
– Contact information
– E-mail

[ARTICLE 8]DESTRUCTION OF PERSONAL INFORMATION

① The Company destroys personal information forthwith when it becomes unnecessary to retain the personal information, such cases as expiration of the retention period thereof or fulfillment of the purpose for which the information has been processed.

② Where personal information needs to be retained by law, regardless of the expiration of the retention period thereof or fulfillment of the purpose for which the information has been processed, the personal information will be moved to separate database or stored in other separate locations.

③ Personal information is destroyed in the following way.
※ Procedure for destruction
– The Company selects the personal information that needs to be destroyed and within five days from the selection, destroys the information approved by the privacy officer specified in Article 10 of the Privacy Policy.
※ Method for destruction
– The personal information recorded and stored in electronic form is destroyed in ways that make it impossible to reproduce the record, such a method as low level formatting, while paper documents on personal information is destroyed with a shredder or by incineration.

[ARTICLE 9]MEASURES TO ENSURE SAFETY OF PERSONAL INFORMATION

The Company takes the following measures to ensure safety of personal information.
① Administrative measure : Formulating and implementing internal management plans, and periodic training for employees
② Technical measure : Managing access rights to the personal information processing system, installing an access control system, encrypting unique identification information, and installing security programs
③ Physical measure : Controlling the access to the computer rooms, archives and other such locations

[ARTICLE 10] PERSONAL INFORMATION PROTECTION OFFICER

① The Company appoints a privacy officer who takes the overall responsibility for processing personal information, handling complaints filed by the subjects in connection with the information processed, dealing with compensations for damages, and other related works.
Privacy Officer
– Name : Song Keunpil
– Position :General manager
– Contact : Tel. +82 031-463-0383 / E-mail. bksales00@bkec.co.kr
② A data subject may contact the privacy officer or team in charge for inquiries about personal information protection, complaints, compensation for damages, or other matters regarding personal information in connection with the services (or businesses) of the Company.
The Company will make prompt responses to such inquiries.

THE AGENCIES BELOW ARE INDEPENDENT FROM THE COMPANY. IF YOU ARE NOT SATISFIED WITH THE COMPANY’S HANDLING OF COMPLAINTS ABOUT PROCESSING OF PERSONAL INFORMATION OR COMPENSATION FOR DAMAGES, OR NEED FURTHER ASSISTANCE IN CONNECTION WITH PERSONAL INFORMATION, PLEASE CONTACT THE AGENCIES.

Personal Information Infringement Report Center (operated by Korea Internet & Security Agency)
Matters to be Covered : Receipt of reports or consultation about infringement on a right to personal information
Website : privacy.kisa.or.kr
Address : Personal Information Infringement Report Center, 3F, 9, Jinheung-gil, Naju-si, Jeollanam-do, 58324, Korea

Personal Information Dispute Mediation Committee (operated by Korea Internet & Security Agency)
Matters to be Covered : Application for personal information dispute mediation, settlement of collective dispute (civil remedy)
Website : www.kopico.go.kr
Address : 4F, Government Complex Seoul, 209, Sejong-daero, Jongno-gu, Seoul, 03171, Korea

Cyber Crime Investigation Division of Supreme Prosecutors’ Office
Website : http://spo.go.kr

Cyber Safety Bureau of Korean National Police Agency
Website : http://cyberbureau.police.go.kr