본문 바로가기
Samsung C&T T&I Fashion Resort
Businesses Portfolio Global Network
home
검색
Contact us Newsroom
Samsung
C&T T&I Fashion Resort
close
close

Businesses

Buildings Civil Infrastructure Plants Housing Growth Driver
View Our Portfolio
close

June 28, 2024 ~
Samsung C&T Corporation’s Engineering and Construction Group (hereinafter referred to as the “Company”) discloses the following privacy policy established so as to protect the personal data of an individual (“Subject”) , and to deal with corresponding grievances promptly and efficiently pursuant to Article 30 of the Personal Information Protection Act.

The Privacy Policy is established in connection to the personal information provided by job applicants, clients, visitors, customers requesting online consultation or making enquiries on the Company’s main website (http://www.secc.co.kr), partners’ employees, and onsite hired workers. For Raemian contract, sales and move-ins users and users of Raemien website (http://www.raemian.co.kr), please refer to the privacy policy notified on the relevant website.

Article 1 (Purpose of Personal Data Handling)

The Company shall handle personal information for the purposes stated below. The personal information processed shall not be used for any purpose other than the following purposes. Where the purpose of use is changed, the Company shall take necessary measures, such as obtaining separate consent in accordance with the relevant laws and regulations.

1. Personal Information of Job Applicants

It shall be processed for the purpose of notifying recruitment-related information, including progress of the recruitment and the results of each stage of the process.

2. Personal Information of Clients

1) Contracted Clients (Corporations & Individuals)
It shall be handled, with an aim of signing and fulfilling a contract, registering the corresponding information into the internal system, conducting tasks entrusted by the Client, and complying with other relevant laws.
2) Visitors to Business Places
It shall be handled, with an aim of facilitating seamless work for the purpose of visiting the Company, dealing with security related matters, parking management, and prevention of safety accidents and infectious diseases.
3) Representative Webpage Users
It shall be handled, with an aim of receiving opinions and inquiries from the Subject through the online Customer Service Center and responding to the enquiries, and an aim of receiving opinions and inquiries related to the company’s businesses.
4) Winners of the company’s official social media events
It shall be handled for the purpose of delivering event prizes conducted on the company's official SNS channel (YouTube, Instagram, etc.).

3. Personal Information of Partners’ Employees (Subcontractors or Suppliers)

1) Partners’ Employees in charge of Contracting
It shall be handled, with an aim of participating in bidding, entering into & delivering agreement, submitting an estimation, controlling supplies, issuing tax invoices, carrying out settlement work for payment, offering evaluation & training sessions for subcontractors and suppliers, and sending out notices and official documents.
2) Partners’ Employees (Technicians)
It shall be handled, with an aim of complying with obligations under relevant laws, checking personal health status and appropriate job placement, managing labor attendant, controlling safety & health, and dealing with industrial accidents.

4. Personal Information of Onsite Hired Workers

It shall be handled, with an aim of complying with obligations under relevant laws, checking personal health status and appropriate job placement, managing labor attendant, controlling safety & health, handling mutual retirement aid funds, and dealing with industrial accidents.

5. Personal Information of Retiring Employees

It shall be handled, with an aim of paying the severance pay, issuing personal identification documents, and claiming & settling personal∙retirement pension.

Article 2 (Handling & Retention Period of Personal Information)

① Where the Company collects the personal data of a Subject within the period of retention and use according to laws, it shall handle∙keep the personal information within the the period of retention∙use agreed upon when collecting personal information from the Subject.
② Respective personal information handling methods and retention periods are as follows.

1. Personal Information of Job Applicants : 180 days as of the date when employment status is confirmed

However, in the case of employment, it is subject to the Company’s the privacy policy for employees.

2. Personal Information of Clients

1) Contracted Clients (Corporations & Individuals): until the fulfilment or termination of a contract, or the end of the Company’s support
2) Visitors to Business Sites
[Where visiting the HQ]
- Entrance Record : 1 month after the visit
- Name, Company, Vehicle Number (in the case of on premise parking) : 1 month after the visit
- CCTV Filming at Restricted Zone : 5 days after recording
[Where visiting a Site]
- Name, Mobile Number, Vehicle Number (Where it is used) : Until the completion of the applicable project
* Other items excluding the above shall abide by the retention period set forth in the consent on the personal data collection & use of visitors to each site
3) Customers using the Online CS Center and Make an Enquiry option on the Representative Webpage : 1 year after applying the consultation
4) Winners of the company’s official social network channel events : destroyed after delivery of the prize.

3. Personal Information of Partners’ Employees : Until the completion of registering a pool of the company’s partners except for the following cases

- Where it is required to see a doctor, receive treatment, apply for hospitalization, and take follow-up measures due to the occurrence of an accident : Until the completion of handling the case
- Where a retention period is set according to related laws, such as the Occupational Safety and Health Act : Until the expiry of the applicable retention period
- Information related to onsite labor attendant : 1 year upon completion of the site work
- Information confirming whether to complete HSE training : 1 year upon completion of the site work

4. Personal Information of Onsite Hired Workers : 5 years upon the employment contract’s termination except for the following cases

- Where it is required to see a doctor, receive treatment, apply for hospitalization, and take follow-up measures due to the occurrence of an accident : Until the completion of handling the case
- Where a retention period is set according to related laws, such as the Occupational Safety and Health Act : Until the applicable retention period
- Information related to onsite labor attendant: : 1 year upon completion of the site work
- Information confirming whether to complete HSE training : 1 year upon completion of the site work

5. Personal Information of Retired Executives & Employees :

- Name, DOB, Contact, Address, Working History for the issuance of individual certificates : Until a subject of information makes a request for deletion
- Savings Account Number for claiming/settling severance pay & individual∙retirement pensions, etc., Local Registration Number (or Foreigner Registration Number, Passport Number) : 1 year after retirement

Article 3 (Outsourcing & International Transfer of Personal Information)

① The Company outsources personal information handling jobs to the following external professional companies for seamless handling of personal information. Where the company is changed, the name will be announced.

Outsourced work Outsourced Company (Subcontractor)
Medical Checkup for Job Applicants & Retired Executives Kangbuk Samsung Hospital, Samsung Changwon Hospital
Entrance Log & CCTV Operation S-1 (S-Tec)
※ In terms of on-site visits, assignees for the security of each site’s facilities
Development, Operation and Maintenance of the Representative Webpage Samsung SDS
Pulip communications Ins
Management of Onsite Labor Attendant & Assistance with Operation of Labor Attendant Management Equipment S-1, Doall-tech, and ID convergence
Application for and Implementation of HSE Training for Onsite Hired Workers HSE Professional Training Centers (Construction Basic OSH Training Institute, Korea Temporary Equipment Association, Korea Occupational Safety and Health Agency, etc.)
Payment of Severance Pay for Retired Executives & Employees, Issuance of Personal Certificate, and Lodgment & Settlement of Personal∙Retirement Pensions Etners
Operation of Safety Training Management System for Onsite Visitor Soft Lab
Statistical Analysis of Webpage User Google, Inc.
Video Interview Service Genesis Lab, Inc. (Naver Cloud Corp, Alipeople Inc.)
Company’s Official Social Networks Channel Event Gift Delivery The SMC (KT alpha Co.,Ltd.)

② Pursuant to Article 26 of the Personal Information Protection Act, when entering into an outsourcing agreement, the Company shall specify the following responsibilities in the contract: the prohibition of handling personal information other than for the purpose of performing the assigned works; technical•administrative safeguards; limitation to secondary outsourcing; monitoring•supervision for the outsourced company; and liabilities in relation to damages. Also, the Company will monitor whether the outsourced company handles personal information in a safe manner.

③ Certain personal information is stored in and entrusted to companies in overseas to provide services and improve user convenience.
• Name & contact of company where information is transferred : Google Inc. (https://analytics.google.com/)
• Country where information is transferred : The United States
• Date & method of transfer : Sending through the network when visitors use services on the website
• Personal information items to be transferred : Cookie, Data related to Device’s Browser, IP Address, Site/App Activity Logging (Failure to send personal identification information)
• Purpose of Recipient & Period of Retention•Use : statistical measurement in terms of users’ interactions occurring on websites (to provide and maintain the security of IP Address services and to inform the user’s country of access), 38 months to archive the data of users and events

Article 4 (Provision of Personal Information to Third Party)

① The Company shall deal with the personal data of a Subject only within the scope stipulated in Article 1 (Purpose of Personal Data Handling), and provides personal information to a third party only when Article 17 of the Personal Information Protection Act is applicable, where a consent is obtained from the Subject or special provisions under law apply. Furthermore, the provision of local registration numbers is applicable only when there is a legal basis.
② The Company shall provide personal information to third parties as below.

1. Personal Information of Job Applicants

- Whom to be Provided : companies checking educational background∙ working experience and reputation, such as First Advantage, Nterway Partners, National Student Cleaning House, Confucius Institute in Seoul, AuraData, British Council in Korea.
- Purpose : to verify a job applicant’s qualifications and degrees and conduct a reference checks
- Item to be provided : Name, DOB, Telephone Number, Educational Background, Working Experience
- Retention & Use Period : Until the purpose of use is fulfilled

2. Personal Information of Visitors to HQ

- Whom to be Provided : Welstory
- Purpose : use of the cafeteria (where applicable)
- Item to be provided : Name, Group, Access Card ID*(* where applicable)
- Retention & Use Period : Until the purpose of use is fulfilled
However, for onsite visitors, provisions in relation to third parties section of each onsite visitor’s personal information collection & use agreement shall be followed.

3. Personal Information of Partners’ Employees in charge of Contracting

A. Training Session for Partners
- Whom to be Provided : Samsung SDS, MultiCampus
- Purpose : to provide training sessions to partners
- Item to be Provided : Belonging Company, Name, DOB, Mobile Number, and E-mail
- Retention & Use Period : Until of use is fulfilled

B. Evaluation & Due Diligence for Partners
- Whom to be Provided : Samsung Engineering, Samsung Heavy Industry
- Purpose : to conduct evaluation & due diligence for partners
- Item to be provided : Belonging Company, Name, DOB, Mobile Number, Telephone Number, Photo, e-mail, Roles & Responsibilities, Position, Employment Type, Personnel Type, Joining Date, Educational Background, Hands-on Experience, Military Service, Occupation Type, Certificate Number
- Retention & Use Period : Until the purpose of use is fulfilled

4. Personal Information of Retired Executives & Employees

- Whom to be Provided : Resort Group at Samsung Construction & Trading, Co., Ltd.
- Purpose : to assist with retired executives (where applicable)
- Item to be provided : Name, DOB, Address, Contact, Position at the time of working
- Retention & Use Period : Until the purpose of use is fulfilled

5. Personal Information of Winners of the company’s official Social Networks channel event

- Whom to be Provided : The SMC
- Purpose : delivery of the prize
- Item to be provided : Name, Contact, ID of Nickname of the event participant
- Retention & Use Period : To be destroyed after delivery of the prize.

Article 5 (Rights∙Obligations of Subject & Legal Representatives and measures of enforcement)

① Subject may exercise its right to request access/correct/delete personal information, and a right to suspend processing personal information to the Company at any time.
② Exercising the rights to the Company according to subparagraph ① can be performed in writing, by e-mail, and facsimile (FAX), etc. pursuant to subparagraph. 1 of Article 41 of the Enforcement Decree of the Personal Information Protection Act. The Company shall take prompt action.
③ The rights under subparagraph ① may be exercised through an agent, including the legal representative of Subject or a delegated person. In this case, a power of attorney should be submitted in the form of Annex No. 11 of the Enforcement Decree of the Personal Information Protection Act.
④ Requests for access to personal information and suspension of process may restrict the rights of Subject according to subpara. 4 of Article 35 and subpara. 2 of Article 37 of the Personal Information Protection Act. ⑤ Requests for correction and deletion of personal information cannot be made where the applicable personal information is specified as the subject of collection in other laws and regulations.
⑥ Where a request to access, correct, delete personal information, or to suspend its dealing is made according to the rights of a subject of information, the Company shall determine that the requester is the subject him/herself or a lawful representative.

Article 6 (Handled Personal Information Items)

The Company handles the below personal information items.

1. Job Applicants

- Compulsory Item: Name (Korean, English), DOB, E-mail, Telephone Number, Mobile Number, Address, Educational Background (Name of Institution Graduated, Major, Matriculation Date, Graduation Date, Title of Thesis), Job Experience, Certificate, Language Information, Income Information, Military Service, Veteran Record, Men of National Merit, Disability Category, Result of Medical Check-up for Recruitment, Passport Number, Foreigner Registration Number

2. Clients

1) Contracted Clients (Corporations & Individuals)
- Compulsory Item : Name, Group, Contact, E-mail, Local Registration Number, and Other Personal Information required for execution and fulfilment of an agreement
※ Relevant laws in terms of collecting Local Registration Number: VAT Act, etc.
2) Visitors to Business Sites
- Compulsory Item : Name, Group, Contact, Vehicle Number (in the case of use), Records of CCTV’s filming communal areas, Access Card ID*(for affiliates only), Facial Images taken by thermal imaging camera
However, for onsite visitors, provisions in relation to third parties section of each onsite visitor’s personal information collection & use agreement shall be followed
3) Customers using the Online CS Center and Make an Enquiry option
- Compulsory Item : Name, E-mail
- Elective Item : Contact, Name of Company
4) Winners of the company’s official Social Networks channel event
- Compulsory Item : Name, Contact, ID of Nickname of the event participant

3. Partners’ Employees

1) Basic Information of Partners & CEO
- Compulsory Item : Name of Company, Name of CEO, CEO’s Contact & E-mail
2) Information of Partners’ Employees in charge of Contracting
- Compulsory Item : Name of Company, Name, DOB, Mobile Number, Phone Number, Photo, E-mail, Roles & Responsibilities, Position, Employment Type, Personnel Category, Joining Date, Educational Background
- Elective Item : Hands-on Experience, Military Service, Occupation Type, Certificate Number
3) Information of Partners’ Employees (Technicians)
- Compulsory Item : Name of Company, Name, DOB, Telephone Number, E-mail, Position, Joining Date, and Labor Attendant History
- Elective Item : Occupation Type, Certificate Number

4. Onsite Hired Workers

- Compulsory Item : Name, DOB, Nationality, Local Registration Number (or Passport Number, Foreigner Registration Number), Gender, Address, Contact, E-mail, Savings Account Number, Skill Qualification & Level, Onsite Labor Attendant
※ Relevant laws in terms of collecting Local Registration Number : The Labor Standards Act, the Income Tax Act, the National Health Insurance Act, the National Pension Act, the Employment Insurance Act, and the Industrial Accident Compensation Insurance Act; Related documents, such as a diagnosis report, a doctor’s note, and a copy of the identification card at the time of seeing a doctor, receiving treatment, applying for hospitalization, and taking follow-up measures due to the occurrence of an accident

5. Retired Executives & Employees

- Compulsory Item : Name, DOB, Contact, Address, Savings Account Number, Working History, Local Registration Number (or Foreigner Registration Number, Passport Number)
※ Relevant laws in terms of collecting Local Registration Number : the Labor Standard Act and Income Tax Law, etc.

6. Automatically Collected & Created Information due to Use of Service :

IP Address, Service Use Log, Access Log and Cookie, etc.
※ Collection Method: Webpage, Written Form and E-mail, etc.

Article 7 (Additional Use∙Provision of Personal Information)

① The Company can use or provide additional personal information without the consent of Subject according to the subparagraph. 3 of Article 15 and subparagraph. 4 of Article 17 of the Personal Information Protection Act.
② Where it is necessary for the Company to use or provide additional personal information without the consent of Subject pursuant to the paragraph ① above, this shall be carried out only if it complies with all of the criteria in each of the following subparagraphs.

1. It has a direct relevance on the original purpose of collection;
2. In light of the circumstances in which personal information is collected or the handling practices, it is possible enough to predict the additional use or provision of personal information;
3. It does not unfairly infringe on the interests of Subject; and
4. Necessary measures are taken to ensure safety, such as pseudonymization or encryption of personal information

③ In terms of additional use∙provision of personal information, the rights∙obligations of Subject & legal representatives and measures for enforcement shall apply in the same manner as set in Article 5 of the Privacy Policy.

Article 8 (Destruction of Personal Information)

① Where personal information becomes unwanted as its retention period expires or the purpose is fulfilled, the Company shall destroy the personal information without delay.
② Where the personal information agreed by Subject needs to be kept according to other laws despite its retention period elapsing or the purpose being fulfilled, the personal information shall be transferred to a separate database (DB) or be stored in a different place of storage.
③ The procedures and methods of destructing personal information are as follows.

1. Destruction Procedures : The Company selects the personal information where a reason for destruction arises, and destructs the personal information through gaining the consent of the Company’s personal information protection officer or that of staff to whom the authority is delegated.
2. Destruction Method : The Company permanently deletes personal information recorded or saved in an electronic file form so that this cannot be restored or reproduced. Also, the Company destructs personal information logged or saved in records, printed materials, written documents, or other recording medium through shredding or incineration.

Article 9 (Measures securing Safety of Personal Information)

The Company shall take the following measures in order to secure the safety of personal information.
1. Administrative Measures : Establishment & implementation of internal management plans, and periodic employees training
2. Technical measures : Control over access authority, such as personal information handling system, installation of access restricting systems, encryption as in unique identification information, and installation of security programs
3. Physical Measures : Restricted access to IT center and data storage room, etc.

Article 10 (Matters concerning the Installation, Operation and Rejection of Devices Auto-collecting Personal Information)

① The Company may use “Cookies” that automatically save and retrieve information at any time so that it could provide tailor-made services to users.
② “Cookies” are small amounts of data which the server (http) used when running a website sends to the user’ PC browser. This could be stored in your computer’s hard drive.
③ The Company analyzes your use of websites in making use of Google Analytics, which is a service offered by Google Inc. ("Google"). The information created through Google Analytics shall be subject to Google’s privacy policy, and be saved after being sent to Google servers in the US. Google assesses your use of websites through information processing on behalf of the Company, and writes down a report on website activities, thereby providing other services related to use of the Internet. You may refuse to use cookies for the aforementioned purposes by way of browser settings, but in that case, you may not be able to fully utilize all of the features on the website. You can download and install additional features for your current web browser from tools.google.com/dlpage/gaoptout to further opt-out from collecting and handling your information (including IP Address). For more information on Google's use of your information, please refer to www.google.com/analytics/learn/privacy.html.

1. Purpose of Cookies Use : It analyzes users’ access frequency or visit time, and so on, and access users’ needs and interests. This is used as an indicator of target marketing and service renewal.
2. Installation, Operation and Rejection of Cookies : You may refuse saving cookies by clicking on ‘Tools΄ → ΄Internet Option΄ → ΄Personal Information΄, and configuring settings on the ‘Personal Information’ tap
3. If you refuse to save cookies, you may experience difficulties in using the services provided by Samsung C&T Corporation.

Article 11 (Data Protection Department)

① The Company shall take overall responsibility for the processing personal information, and shall designate a person in charge of personal information protection to deal with complaints and relief of Subject related to the processing of personal information.

Chief Privacy Officer • Name: VP/ HongLag Kim
• Position: HR Team Leader, CPO (Chief Privacy Officer)
• Contact: (Tel)02-2145-5929
Department in charge of Personal Data Protection • Dept. Name: HR Team
• Contact: (Tel) 02-2145-6115, (Fax) 02-2145-5589
                        (E-mail) security.cnt@samsung.com

Article 12 (Inspection Request for Personal Information)

Subject may request to inspect personal information according to Article 35 of the Personal Information Protection Act from the department in charge of personal data protection specified in Article 11 of the Privacy Policy. The Company shall endeavor to promptly process the Subject’s request for access to personal information.

Article 13 (Remedies against Infringement of Rights)

Where it is required to report an infringement of personal information and to ask for advice, please contact the <online consultation center> on the website.
If you are not satisfied with the results of the Company’s personal information complaint handling or relief, or if you need further assistance, please contact us.

▶ Personal Information Infringement Report Center : (Without area code) 118 (http://privacy.kisa.or.kr)
▶ Personal Information Dispute Mediation Committee : 1833-6972 (www.kopico.go.kr)
▶ Supreme Prosecutors’ Office Cybercrime Investigation Division : (Without area code) 1301, cid@spo.go.kr (http://spo.go.kr)
▶ Police Cyber Bureau : (Without area code) 182 (ecrm.police.go.kr)

Article 14 (Changes to the Privacy Policy)

Where it is required to report an infringement of personal information and to ask for advice, the on the webpage shall receive these enquires.
If the Company’s dealings with complaints about personal information, and the resulting remedies are not as good as expected, or in-depth assistance is necessary, please make a contact.

① If there is addition, deletion or modification to the Privacy Policy, it shall be notified at least 7 days before the effective date.
- Date of announcing the Privacy Policy : June 21, 2024
- Date of implementing the Privacy Policy : June 28, 2024
② You may find our previous privacy policy by clicking on the date on the top of this privacy policy notice.