At Samsung, we are committed to respecting the privacy of our customers.

We strive to ensure that you can trust us with your personal information. We use the personal information provided to us by you in a lawful manner for the purpose for which the data was collected and uphold your data privacy rights and choices. This Privacy Policy describes how we use and protect your personal information. We also explain the choices available to you regarding our use of the information and how you can exercise them.

1. Personal Information We Collect and How We Collect It

(1) Personal Information We Collect

When you sign up for or use a service, we may collect personal information as follows. This is limited to the personal information necessary to provide the service. Additional personal information will only be collected with your further consent.

Type

Description

Required Information

- Sign up: Name (Korean and English), Company name (Korean and English), User ID and password, Language used, Phone number, Country of location, Email address, Vendor code, Service usage information

Optional Information

- When using non-member available menu: mobile phone number, email address

Automatic Information

- IP address, cookies, MAC address, details of the usage of the service, visit records

※ Note: At Samsung, we do not collect sensitive information (information related to ideology/belief, membership or withdrawal from a trade union or political party, political opinions, health, or sex life) that is likely to significantly infringe on your privacy.

※ Note: In principle, we do not collect the personal information of a user who is under 14. However, where it is necessary to do so, we obtain consent from their legal guardian in advance. The data is handled in a safe manner while being processed and is destroyed immediately after the processing purpose has been achieved.

(2) How We Collect Personal Information

We may collect your personal information as follows :

∙ We collect information that you enter to sign up for or use a service;
∙ We collect information automatically generated on apps and websites when you use a service (such as IP address, data about the use of the service, etc.);
∙ We collect information provided to us by you for such purposes as customer service via phone, e-mail, message board, or CS menu;

2. For What Purposes We Use Personal Information

We may use your personal information as follows :

Purpose

Description

Managing Membership and Verifying User Identity

- Identify a user’s identity; check a user’s sign up or cancellation of a service; check a user’s age and obtain consent from their legal guardian; verify the identity of a user or their legal guardian.
- Establish communication channels
- Prevent illegal use of a service; respond to user queries, such as complaints.
- Send notices.

Service Provision

- Provide services and opreate
- Notification of Request Processing Result

Service Development and Improvement

- Service improvement and development

Responding to User Questions

- Responding to inquiries and complaints
- Preventing and resolving related disputes

3. To Whom We Disclose Personal Information

We do not disclose your personal information to third parties without your consent, except in the following circumstances :

∙ Where special provisions exist in law or it is necessary to observe legal obligations;
∙ Where it is necessary to bill services rendered.
∙ Where it is necessary to bill services rendered. ∙ In case of emergency situations such as disasters, infectious diseases, incidents or accidents that pose imminent threats to life or body, or imminent property loss,

4. The Criteria We Use to Determine Additional Use/Disclosure of Personal Information

In accordance with Articles 15 (3) and 17 (4) of the Personal Information Protection Act, we may use and/or disclose your personal information additionally without your consent in consideration of the matters provided for in Article 14-2 of the Enforcement Decree of the Personal Information Protection Act as follows:

Additional use/disclose of your personal information without your consent is determined according to :

∙ Whether the purpose of additional use/disclosure of personal information is compatible with the purpose for which the data was collected;
∙ Whether additional use/disclosure of personal information is foreseeable in light of the circumstances under which the personal information was collected and the processing practices;
∙ Whether additional use/disclosure of personal information does not unfairly infringe your interests; and
∙ Whether measures to ensure safety, such as pseudonymization or encryption, have been taken.

5. Outsourcing of Personal Information Processing

We outsource the processing of personal information to outside professional third parties to provide better services as follows :

Name of Third Parties

Processing Operations Outsourced

emro Inc.

Identity verification according to the use of membership management service, delivery of notices, website and system management, handling various customer complaints such as inquiries

HYOSUNG ITX

Identity verification according to the use of membership management service, delivery of notices, website and system management, handling various customer complaints such as inquiries

SAMSUNG SDS & Subcontractor
(Miracom Inc Co., I-ONE,
AZM Global)

System Operation and Management(Including Data Quality Control)

When we outsource the processing of personal information, we enter into a contract with the processor that includes the following measures to protect the personal information and oversee whether they process the personal information in a safe manner :

∙ Prohibition of the processing of personal information unrelated to the outsourced processing operations;
∙ Technical and organizational measures to protect personal information;
∙ Restriction of subcontracting;
∙ Obligation to return or delete the personal information after the processing operations are completed; and
∙ Damage liability.

If the processors or processing operations change, this Privacy Policy will be updated accordingly or specific privacy notices will be provided.

6. Destruction of Personal Information

We destroy your personal information immediately after the processing purpose has been achieved or the retention period has expired (e.g., due to membership cancellation).

However, where certain personal information must be retained under the applicable law below, we keep the data secure for that period and destroy it after that period.

Types of Personal Information to be Retained

Retention Period

Legal Grounds

Records related to the cancellation of contracts or subscriptions

5 Years

Enforcement Decree of the Act on the Consumer Protection in Electronic Commerce

Records related to the payment for and supply of goods, etc.

5 Years

Enforcement Decree of the Act on the Consumer Protection in Electronic Commerce

Records related to the resolution of consumer complaints or dispute

3 Years

Enforcement Decree of the Act on the Consumer Protection in Electronic Commerce

Records related to the collection, processing, use, etc., of credit information

3 Years

Credit Information Use and Protection Act

Records related to marks and advertisements

6 Months

Enforcement Decree of the Act on the Consumer Protection in Electronic Commerce

Users’ Internet logs, or data that records the sites accessed by users

3 Months

Protection of Communications Secrets Act

Communication confirmation data

12 Months

(1) Destruction Procedures

Your personal information will be deleted immediately after use. When personal information must be retained for the reasons given above, the target personal information is kept separately from the general users’ personal information database or in a separate location for the period prescribed by law, and it is deleted immediately after the period has expired.

(2) Destruction Methods

When destroying personal information, we make sure that electronic files are permanently deleted and printed materials are shredded or incinerated so as not to be retrievable.

7. Your Privacy Rights

We respect your privacy rights and choices. At any time, you (or, in the case of children under 14, the legal guardian) can ask us to access, correct, delete, restrict the processing of, or withdraw consent in relation to your personal information via the methods below. However, the exercise of some rights may be restricted in accordance with relevant laws, such as the Personal Information Protection Act :

∙ Adjusting the privacy settings on the website/app/service;
∙ Visiting the Samsung Privacy site at https://privacy.samsung.com
∙ Calling us at 1588-4730; and
∙ Contacting our Customer Service team or the Chief Privacy Officer (see the How to Contact Us section below).

8. How to Contact Us

We’ve put in place a Customer Service team and a Chief Privacy Officer to protect your personal information and handle your privacy grievances.

You can contact us to make privacy rights requests or submit any privacy complaints that occurred while using our services. We will promptly and fully respond to your request.

(1) Customer Service Team

∙ Customer Service Team: Corporate Procurement Strategy team of Partner Collaboration Center at Samsung Electronics
∙ E-mail: nsrm.qna@samsung.com

(2) Chief Privacy Officer and Privacy Team

∙ Chief Privacy Officer: The head of the Global Privacy Team
∙ Privacy Team: Global Privacy Team
∙ Phone: 1588-4730
∙ E-mail: privacy.sec@samsung.com

(3) Data Protection Authorities

You can also contact the following agencies to report privacy breaches or seek help :

∙ Personal Information Infringement Report Center: https://privacy.kisa.or.kr / Tel. 118
∙ Cybercrime Investigation Division of the Supreme Prosecutors’ Office of the Republic of Korea: www.spo.go.kr / Tel. 1301
∙ Cyber Bureau of the Korean National Police Agency: https://ecrm.cyber.go.kr / Tel. 182

9. Use of Cookies

We use cookies that frequently store and retrieve your information. Cookies are small text files that are sent to your browser by the server used to run our website, which are stored on your device.

(1) How We Use Cookies

We use cookies for the following purposes :
∙ To implement an auto-login function;
∙ To analyze access frequency or visit time of members/non-members;
∙ To understand your tastes and interests and check your usage records; and
(2) Your Cookie Choices

You are allowed to manage how cookies are set and used. You can disable certain types of cookies or block all cookies by adjusting the privacy and security settings on your browser’s menu (e.g., Internet Explorer 11.0: Tools > Internet Options > Privacy). Please note that without cookies, you may not be able to use or benefit from all of the features of our services.

10. How We Protect Personal Information

We take a variety of measures to keep your personal information safe and secure, including :

∙ Organizational Measures: Establishing and implementing the Internal Management Plan for Personal Information; conducting personal information protection training.
∙ Technical Measures: Operating access control equipment and restricting access rights to personal information; keeping access logs of the personal information processing system and using security functions to prevent forgery/alteration; encryption of personal information; installation and operation of security programs, such as antivirus software.
∙ Physical Measures: Access control for physical storage locations, such as computer rooms and data rooms.

11. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our personal information practices with respect to our services. We will post a notice on our website or on your device to notify you at least seven days in advance of material changes to our Privacy Policy.

Version Number: v 1.1
Effective Date: January, 08, 2025