Skip to main content

Privacy Policy

As a specialized automotive electronic components company, we will deliver customer satisfaction.

DONG-AH ELECTRIC COMPONENTS Privacy Policy

DONG-AH ELECTRIC COMPONENTS (hereinafter referred to as the “Company”) establishes and discloses this Privacy Policy in accordance with Article 30 of the Personal Information Protection Act to protect the personal information of data subjects and to promptly and appropriately handle related grievances. The Company collects personal information to the minimum extent necessary, processes it only within the scope of its intended purpose, and continuously strengthens its internal security management system based on the protective measures required by applicable laws and regulations.
Article 1 (Purpose of Processing Personal Information)
The Company processes personal information within the scope of the purposes listed below. If personal information is to be used for purposes other than those specified, separate consent shall be obtained in accordance with Article 18 of the Personal Information Protection Act.
1. Receipt and processing of product inquiries (E-Inquiry)
  • Confirmation of product- and technology-related inquiry details
  • Response and consultation through contact information
  • Customer support or technical inquiry response
  • Notification of processing results
2. Customer support and grievance handling
  • Notification of processing results
  • Fact verification and processing
  • Notification of processing results
3. Website operation and security management
  • Management of access records and analysis of security logs
  • Detection of abnormal traffic
  • Improvement of system stability and quality
  • Prevention of and response to security incidents
Article 2 (Processing and Retention Period of Personal Information)
The Company processes and retains personal information within the personal information retention and use period prescribed by applicable laws and regulations or within the period agreed upon by the data subject at the time of collection.

※ Relevant laws and regulations: Act on Consumer Protection in Electronic Commerce, Etc., Protection of Communications Secrets Act, etc.

1. E-Inquiry (product inquiry) processing records
  • Retention period: Three (3) years after completion of inquiry processing
    ※ Based on Article 6 of the “Act on Consumer Protection in Electronic Commerce, Etc.” regarding records of consumer complaints and dispute resolution
2. Website usage-related log information
  • Computer communications, Internet log records, access location tracking data: Three (3) months
    ※ Retention of communication confirmation data pursuant to Article 41 of the “Protection of Communications Secrets Act”
3. Cases where retention is required by laws and regulations for investigations or inquiries
  • Retained until the completion of the relevant procedures
    ※ Grounds for restriction on suspension of processing or deletion pursuant to Article 21(1) of the Personal Information Protection Act
Article 3 (Items of Personal Information Processed)
The Company processes the following personal information items.
1. Product inquiries (E-Inquiry)
  • Required items: Name, contact information (telephone number or mobile phone number), email address, company name (or affiliation), inquiry details
  • Optional items: Attachments (drawings, specifications, etc., if necessary)
2. In the course of using Internet services, the following personal information items may be automatically generated and collected.
  • IP address, cookies, MAC address
  • Service usage records, access records, error and security logs, records of improper use, etc.
Article 4 (Provision of Personal Information to Third Parties)
In principle, the Company does not provide the personal information of data subjects to external parties.
However, during the processing of E-Inquiry product inquiries, if the inquired product falls under the responsibility of another business division, personal information may be provided to a minimum extent as follows.
1. Recipients
  • DONG-AH ELECTRIC EQUIPMENT
  • DONG-AH HIGH TECH
  • DELCOM
  • AUTOTECH
  • Internal affiliates or designated business divisions where provision is inevitably necessary to respond to the inquired product
2. Purpose of provision
  • Response to product-specific technical inquiries, quotation proposals, customer support, and notification of processing results
3. Items provided
  • Name, contact information, email address, company name (affiliation), inquiry details, attachments (if necessary)
4. Retention and use period
  • The recipient companies retain the information until completion of inquiry processing and then destroy it without delay.
5. Grounds for provision
  • Provision for the convenience of processing the data subject’s inquiry
  • The data subject is deemed to have consented to the provision of related personal information upon submission of an E-Inquiry
    ※ Relevant law: Article 17, Paragraph 1 of the Personal Information Protection Act – Provision based on the consent of the data subject
Article 5 (Destruction of Personal Information)
1. The Company destroys personal information without delay when it becomes unnecessary due to the expiration of the retention period or achievement of the processing purpose.
2. If retention is required by applicable laws and regulations, the relevant personal information is stored separately in a dedicated database (DB) or physical storage space.

※ Statutory retention provisions under the “Act on Consumer Protection in Electronic Commerce, Etc.”, the “Protection of Communications Secrets Act”, etc.

3. The procedures and methods for destroying personal information are as follows.
Destruction procedures
  • When grounds for destruction arise, the Company selects the relevant personal information and destroys it upon approval by the Chief Privacy Officer.
Destruction methods
  • Personal information recorded and stored in electronic file form is destroyed using technical methods that render recovery or reproduction impossible.
  • Personal information recorded and stored in paper documents is destroyed by shredding or incineration.
Article 6 (Rights and Obligations of Data Subjects and Methods of Exercising Them)
Data subjects may exercise the following personal information protection-related rights against the Company at any time.

※ Data subject rights are guaranteed pursuant to Articles 35 through 37 of the Personal Information Protection Act.

1. Data subjects may exercise the following rights.
  • Request for access to personal information
  • Request for correction or deletion of personal information
  • Request for suspension of processing of personal information

Requests to exercise rights under Paragraph 1 may be submitted to the Company in writing, by telephone, by email, or by facsimile (FAX), and the Company will take action without delay within the period prescribed by applicable laws and regulations.

If a data subject requests correction or deletion of errors in personal information, the Company will not use or provide the relevant personal information until the correction or deletion is completed.

Rights under Paragraph 1 may be exercised through a legal representative of the data subject or a person delegated by the data subject. In such cases, a power of attorney in the form prescribed in Appendix Form No. 11 of the “Public Notice on Personal Information Processing Methods (Notice No. 2023-12)” must be submitted.

Data subjects shall not infringe upon their own personal information or privacy, or that of others, processed by the Company in violation of the Personal Information Protection Act or other relevant laws and regulations.

Article 7 (Measures to Ensure the Security of Personal Information)
The Company takes the following measures to ensure the security of personal information.

※ The Company complies with the security measures stipulated in Article 29 of the Personal Information Protection Act.

1. Administrative measures:
  • Establishment and implementation of internal management plans
  • Regular employee training (privacy protection, information security, etc.)
  • Minimization of personnel handling personal information and access rights
  • Retention and inspection of records of granting, changing, and revoking access rights
2. Technical measures
  • Management of access rights to personal information processing systems
  • Installation and operation of access control systems
  • Encryption of important information such as passwords
  • Installation of security programs and regular updates and inspections
  • Storage of access records (logs) and prevention of forgery or alteration
  • Detection of abnormal activities and response to security incidents
3. Physical measures
  • Access control to computer rooms and data storage rooms
  • Management of access records and operation of CCTV
  • Locking of document storage areas and access control
Article 8 (Matters Concerning Automatic Collection and Operation of Personal Information and Refusal Thereof)
1. The Company may use “cookies,” which store and retrieve usage information from time to time, to provide service usage statistics, security verification, and convenience features to users.
2. Cookies are small pieces of information sent by the server operating the website to the user’s computer browser and may be stored on the user’s PC hard disk.
3. Purpose of using cookies
  • To analyze users’ access frequency, visit time, and service usage patterns and utilize the results to improve services and enhance security
4. Installation, operation, and refusal of cookies
  • Users may refuse the storage of cookies by selecting Tools > Internet Options > Privacy in the menu at the top of their web browser.
5. If cookie storage is refused
  • There may be restrictions on the use of certain customized services.
Article 9 (Chief Privacy Officer)
The Company designates a Chief Privacy Officer and the responsible department to oversee and take responsibility for tasks related to personal information processing.
Chief Privacy Officer
  • Department: Management Support Division, Organizational Culture Office
  • Name: Park Tae-jeong
  • Email: tj@dongah.biz
  • Phone: +82-31-371-4351
Personal Information Protection Department
  • Department: Management Support Division, IT Team
  • Person in charge: Son Gi-eok
  • Email: dongahit@dongah.biz
  • Phone: +82-31-371-4329
1. Administrative measures:
  • Establishment and implementation of internal management plans
  • Regular employee training (personal information protection, information security, etc.)
  • Minimization of personnel handling personal information and access rights
  • Retention and inspection of records of granting, changing, and revoking access rights
Article 10 (Request for Access to Personal Information)
Data subjects may request access to personal information pursuant to Article 35 of the Personal Information Protection Act from the department below.
Department receiving and processing requests for access to personal information
  • Department: Management Support Division, IT Team
  • Person in charge: Son Gi-eok
  • Email: dongahit@dongah.biz
  • Phone: +82-31-371-4329
Article 11 (Remedies for Infringement of Rights and Interests)
Data subjects may request consultation or remedies through the organizations listed below.
The organizations listed below are separate from the Company. If you are not satisfied with the Company’s internal handling of personal information complaints or remedies for damages, or if you require more detailed assistance, please contact them.
  • Personal Information Infringement Report Center: privacy.kisa.or.kr / ☎ +82-118
  • Personal Information Dispute Mediation Committee: www.kopico.go.kr / ☎ +82-1833-6972
  • Cyber Investigation Bureau, National Police Agency: privacy.kisa.or.kr / ☎ +82-182
Article 12 (Changes to the Privacy Policy)
This policy shall be amended in the event of changes to laws, guidelines, or internal policies, and any changes will be announced through the website.