Consent to the Collection and Use of Personal Information
TANHAY Co., Ltd. (“the Company”) places the highest priority on protecting
whistleblowers’ personal information and complies with all relevant laws,
including the Act on Promotion of Information and Communications Network
Utilization and Information Protection.
This notice regarding the collection and use of personal information is intended
to support the Company’s procedures for identity protection and grievance
reporting, with the primary goal of safeguarding the rights and interests of
whistleblowers.
1. Purpose of Collecting and Using Personal Information
The Company uses the personal information provided only for the purposes necessary for receiving and processing reports or grievances.
- Verification of the report and fact-finding
- Contacting the whistleblower when additional information is required
- Providing updates on the results of the investigation
- Protecting whistleblower identity and preventing any disadvantage
- Preventing false or malicious reports
※ When anonymous reporting is selected, no personal information is collected. If contact is needed, information may be used only when voluntarily provided.
2. Items of Personal Information Collected
(1) Optional items (collected only when voluntarily provided by the whistleblower)
- Name, affiliation (company/department), contact information (telephone/mobile), email address, relationship to the case
3. Retention and Use Period of Personal Information
Retained for 3 years from the date the report is received.
Purpose of retention: investigation of the report, follow-up management, response to repeated reports, and confirmation in case of disputes.
Information is destroyed immediately upon expiration of the retention period.
※ Upon request by the whistleblower, deletion will be carried out promptly within the scope permitted by applicable laws.
4. Provision of Personal Information to Third Parties
The Company does not provide personal information to external parties as a general rule.
However, exceptions may apply in the following cases:
- When the whistleblower provides explicit consent
- When legitimately requested by investigative or supervisory authorities under applicable laws
- When required by the Grievance Review Committee or the Ethics Management Officer for investigation purposes
5. Outsourcing the Processing of Personal Information
The Company does not outsource personal information processing to external service providers for the operation of the reporting system or during the investigation process.
(If outsourcing becomes necessary, prior notice and consent will be obtained.)
6. Procedures and Methods for Destroying Personal Information
- Deleted without delay when the retention period expires or the purpose of collection is achieved
- Electronic files: permanently deleted using technical methods that prevent recovery
- Paper documents: destroyed by shredding or incineration
7. Whistleblower Protection Measures
The Company guarantees the following measures to protect whistleblowers:
- Identity and report details will not be shared with anyone outside the Grievance Review Committee and Ethics Management Officer
- Strict prohibition of retaliation or disadvantage by involved parties
- Protective measures (e.g., departmental separation or temporary reassignment) may be implemented when necessary
- Whistleblowers may request protection immediately if any disadvantage occurs
8. Personal Information Protection Officer and Contact Information
- Tel : 02.2691.8888
- Fax : 02.2696.7344
For further inquiries or to report personal information infringement, please contact the following organizations:
· Personal Information Dispute Mediation Committee :
www.kopico.go.kr
· Personal Information Infringement Report Center :
privacy.kisa.or.kr
· Cyber Bureau of the Korean National Police Agency :
cyberbureau.police.go.kr
※ You may refuse to consent to the collection and use of personal information. However, refusal may limit your ability to submit online reports.
