How To Use | SVPN Service (2024)

The Company collects the following categories of personal information for membership registration, service application, revision/unsubscription, warranty, customer service, new release information, events, user management, etc.

□ Required information
- Company, division , name, e-mail address(Knox), e-mail address
(Personal) and service initiation/termination date
- Right to refuse the collection:
Users reserve the right to refuse the collection of required
information. In such cases, services that require user registration
will not be available.

□ Optional information
- Phone number, mobile phone number, e-mail address(Personal 2nd)
and Knox ID

□ The following information may be generated and collected in the process of using services or business processing:
- Service use history, access logs, cookies, access IP information
and suspension history
- Right to refuse the collection:
Users reserve the right to refuse the collection of optional information.

※ Can be disagreement Optional information Collection.

The Company collects personal information in the following methods:

□ Membership registration via the website

Your Options

You have the right to refuse to provide the Company with certain types of information. In particular cases, this can limit your ability to use services. The company will explain these limitations so you can make an informed decision.

The Company collects only minimum range of personal information upon the consent of customer and processes the personal information in accordance with the purpose of the collection and as necessary to provide the service.

The Company uses collected personal information for the following purposes:

(1) perform service as agreed to in relevant contract(s), including providing content according to service description;

Samsung SDS entrusts personal information processing as follows for smooth personal information processing.

- Consignee: Hyosung ITX Co., Ltd.
- Contents of entrusted work: Response and processing of user inquiries received at the customer center
- Period of possession and use: The date of termination of the consignment contract.

In accordance with Article 26 of the Personal Information Protection Act when signing a consignment contract, Samsung SDS specifies responsibilities such as prohibition of personal information processing, technical and administrative protection measures, restrictions on re-entrustment, management and supervision of trustees, and damages in documents such as contracts, and supervises whether trustees handle personal information safely.

If the contents of the consignment work or the trustee is changed, we will disclose it through this personal information processing policy without delay.

The Company may transfer and process personal information from the server that is outside of the country in which user reside through its global affiliates or third party service providers with whom appropriate data processing agreements have been executed.

□ Data transfer and method of transfers
- Transfer target : Overseas companies use SVPN, Samsung affiliated
companies, subsidiaries, Hyosung ITX
- Receiving country : Korea (SVPN system located)
- Transferring Date : Data will be transferred in case of creating an
SVPN account, modifying and changing personal information
and using the service
- Transfer method : Save in domestic servers (DB), when creating
account and accessing through user portal from abroad
※ SVPN servers (DB) location: Korea

□ Items of personal information transferred
- Required information : Company, division , name, e-mail address
(Knox), e-mail address(Personal) and service initiation/termination
date.
- Optional information : Phone number, mobile phone number, e-mail
address(Personal 2nd) and Knox ID

[For European Economic Area (EEA) Residents Only]
In addition, your use of the services can also involve the transfer, storage, and processing of your personal information to other countries; such countries include, without limitation, countries in the European Economic Area, the United States of America, China, Singapore, Vietnam, India, Canada, the Philippines, and Japan. The Company will take appropriate measures, in compliance with applicable law, to ensure that your personal information remains protected. Such measures include the use of Standard Contractual Clauses to safeguard the transfer of data outside of the EEA. To request more information or to obtain a copy of the contractual agreements in place, contact us. See the contract information section below.

The Company disposes of personal information after fulfilling the original purposes of collecting and using the information without delay.

However, the following information will be retained for the specified period for the following reasons:

□ Retention of information according to the Company’s internal guidelines
- Items of retention: Company, division, name, e-mail address(Knox),
e-mail address(Personal), service initiation/termination date,
Phone number, mobile phone number, e-mail address(Personal 2nd)
and Knox ID
- Reasons for retention: Prevention of confusion in using services and
responses to possible conflicts in regard to identify verification,
misuse, etc.
- Retention period:

One (1) month after termination of service

Notwithstanding the above, the Company will retain your personal information to the extent necessary to comply with any applicable legal and contractual obligations.

□ Disposal procedures
The information that the members provide for membership registration and other reasons will be retained for a certain period of time after the original purposes are fulfilled and disposed in accordance with the internal guidelines and other related legislation for information protection purposes (see #5. Retention Period of Collected Personal Information).
The above-mentioned personal information will not be used for any purposes other than the purpose of retention except as required by law.

□ Disposal methods
Personal information printed on paper will be disposed by a paper shredder or an incinerator. Personal information in electronic files are deleted by a technical method that prohibits regeneration of the record.

The Company pursues the following technical/managerial measures in order to ensure security in processing personal information of the users to prevent any loss, theft, leakage, tampering or damage of personal information.

□ Establishment and execution of internal management plan
The Company establishes and executes an internal management plan for personal information protection.

□ Minimizing number of persons who handle personal information and training
The Company appoints the minimum number of persons who handle personal information and implements measures to manage personal information more efficiently.

□ Restrictions on access to personal information
The Company takes the necessary steps to monitor access to personal information by granting, changing and removing access to the database systems in which personal information is processed. The Company also deploys and uses an intrusion prevention system to control unauthorized external access.

□ Access record storage and tempering prevention
The Company retains access records of the personal information processing system (e.g. web logs, summary data, etc.) for at least six (6) months, and enables security functions to prevent tampering, theft and loss of the access records.

□ Personal information encryption
Personal information of the users is encrypted to be saved and managed. Additional security functions are used for important data, including encryption when saving/sending.

□ Technical measures against hacking
In order to prevent any leakage of or damage to personal information caused by hacking or computer viruses, the Company has installed security software with regular updates and monitoring, as well as a system in access-controlled areas for technical/physical monitoring and blocking. The Company also provides network traffic monitoring and detection of any attempts to illegally change the information.

□ Entrance control for unauthorized persons
The Company has established and is in operation of entrance control procedures for the physical retention place of the personal information system.

□ The Company does not collect personal Information of children under the age of 16.

(1) Users Rights
You are entitled (in the circ*mstances and under the conditions, and subject to the exceptions, set out in applicable law) to:
●The right to access ？ You have the right to request the Company for copies of your personal data. We can request additional information necessary for self-certification for this service. In addition, users may access/view their personal information after identity verification procedures under ‘Revise Personal Information’ (or ‘Revise Member Information’) to view personal information.
●The right to rectification/modify ？You have the right to request that the Company correct any information you believe is inaccurate. You also have the right to request the Company to complete the information you believe is incomplete. In addition, users may revise their personal information after identity verification procedures under ‘Revise Personal Information’ (or ‘Revise Member Information’) to revise personal information. If users request for a correction on the error of their personal information, that personal information will not be used or provided until the correction is completed.
●The right to erasure/delete ？ You have the right to request that the Company erase your personal data, Personal information that have been cancelled or deleted upon the request of the users or their legal representatives will be processed pursuant to the “Retention Period of Collected Personal Information.” This information may not be accessed or used for any other purposes.
●The right to restrict processing ？ You have the right to request that the Company restrict the processing of your personal data for purposes other than those specified in this policy.
●The right to object to processing ？ You have the right to object to the Company’s processing of your personal data for purposes other than those specified in this policy.
●The right to data portability ？ You have the right to request that the Company transfer the data that we have collected to another organization, or directly to you, under certain conditions.

□ Users may unsubscribe membership after identity verification procedures under ‘Revise Personal Information’ (or ‘Revise Member Information’) to ‘Unsubscribe’ to unsubscribe membership (withdrawal of consent).

(2) Addition Rights of California Resident Users [California Residents Only]
In addition to the rights above, California Residents may exercise the following additional rights:
●The right to “Opt-out” of “Sale”. ？ The Company does not sell your personal information, so we do not offer an opt out.
●The right to limit use and disclosure of sensitive personal information. ？ The Company does not collect your sensitive personal information
●The right to non-discrimination ？ It goes without saying, but we will not hold it against you when you exercise any of your rights. In fact, the Company encourage you to review your privacy settings closely and reach out to us with your questions.

For any California Resident users who have special accessibility needs to access the content of this Privacy Policy, the Company endeavors to provide increased access to technologies that accommodates the needs of persons with disabilities. To support this, the Company considers the WCAG 2.1 Level AA guidelines as follows:

□ Design site templates with an emphasis on color contrast, logical heading order, and configurable repeated elements.
□ Code the templates to ensure pages are usable input and output devices, such as keyboard navigation through shortcuts.

(3) Request submission
How to Submit a Request: To submit a request, click here or email or contact us to the contact information set out below.

The Company will install and operate a device that automatically collects personal information, including cookies that constantly find and save user information. Cookies are text files that the Company’s website servers send to users’ browsers and are saved on users’ hard drive.
The Company uses cookies for the following purposes to provide SVPN service :

□ Strictly necessary, Performance cookies
- Session ID, Secondary Authentication, Security program installation status, Service connection status
- Usage language (Korean, English), Access area selection, Login ID storage, Service Desk information

SVPN sevice is using only strictly necessary Performance cookies.
If have any questions about cookies, please contact the service desk below.
- (E-mail) svpn@samsung.com (Tel) +82-70-7010-3000

The Company has designated a Chief Privacy Officer and a responsible department to protect personal information and handle related complaints as follows:

□ Chief Privacy Officer
Name: Youngsun Shim
Department : Privacy Management Group
Phone number: +82-2-6155-1118
E-mail address: privacy.sds@samsung.com
※ Connect to the personal information protection department.

□ Customer Service Officer
Name: MooYeong Jeong (Group Leader)
Department : Cloud Network SRE Group
Phone number : +82-70-7010-3000
E-mail address: svpn@samsung.com
※ Connect to the SVPN Service desk.

Users may report all personal information related claims that may arise in the process of using the Company’s services to Chief Privacy Officer or the responsible department. The Company will promptly provide proper responses to the claims.
For reporting or consultation on other personal information violations, please contact the following institutions:

A Empresa coleta as seguintes informacoes pessoais para registro de membro, pedido de servico, revisao/cancelamento de assinatura, garantia, atendimento ao cliente, novas informacoes de lancamento, eventos, gerenciamento de usuario, etc.

□ Informacao requerida:
- Empresa, divisao, nome, endereco de e-mail (Knox), endereco de e-mail
(Pessoal) e data de inicio/termino do servico
- Direito de recusa da coleta e possiveis desvantagens:
Os usuarios se reservam o direito de recusar a coleta das informacoes necessarias. Nesses casos, os servicos que exigem o registro do usuario nao estarao disponiveis.

□ Informacao opcional:
- Numero de telefone, numero de telefone celular, endereco de e-mail (Pessoal 2o) e ID Knox

□ As seguintes informacoes podem ser geradas e coletadas no processo de uso de servicos ou processamento de negocios:
- Historico de uso do servico, logs de acesso, cookies, informacoes de IP de acesso e historico de suspensao

※ Pode haver desacordo Coleta de informacoes opcionais.

A Empresa coleta informacoes pessoais nos seguintes metodos:

□ Registro de filiacao atraves do site

Suas Opcoes:

Voce tem o direito de se recusar a fornecer a Empresa certos tipos de informacoes. Em casos especificos, isso pode limitar sua capacidade de usar os servicos. A empresa explicara essas limitacoes para que voce possa tomar uma decisao informada.

A Empresa coleta apenas um intervalo minimo de informacoes pessoais com o consentimento do cliente e processa as informacoes pessoais de acordo com o objetivo da coleta.

A Empresa utiliza as informacoes pessoais coletadas para os seguintes fins:

(1) Cumprimento do contrato no que diz respeito a prestacao de servicos e fornecimento de conteudo de acordo com a prestacao do servico.

A empresa fornece informacoes pessoais de processo do servidor que esta fora do pais em que o usuario reside.

□ Transferencia de dados e metodo de transferencia:
- Alvo da transferencia: Empresas estrangeiras que utilizam SVPN, empresas afiliadas a Samsung, subsidiarias.
- Pais receptor: Coreia (sistema SVPN localizado)
- Data de Transferencia: Os dados serao transferidos no caso de criar uma conta SVPN, modificar e alterar informacoes pessoais e usar o servico.
- Metodo de transferencia: Salvar em servidores domesticos (DB), ao criar conta e acessar atraves do portal do usuario do exterior.
※ Localizacao dos Servidores SVPN (DB): Coreia

□ Itens de informacoes pessoais transferidos
- Informacao requerida: Empresa, divisao, nome, endereco de e-mail (Knox), endereco de e-mail (Pessoal) e data de inicio/termino do servico.
- Informacao opcional: Numero de telefone, numero de celular, endereco de e-mail (Pessoal 2o) e ID Knox.

□ A pessoa que transferiu o periodo de retencao de informacoes pessoais
- Um (1) mes apos o termino do servico

[Apenas para residentes do Espaco Economico Europeu (EEE)]
Alem disso, o uso dos servicos tambem pode envolver a transferencia, armazenamento e processamento de suas informacoes pessoais para outros paises; tais paises incluem, sem limitacao, paises no Espaco Economico Europeu, os Estados Unidos da America, China, Cingapura, Vietna, India, Canada, Filipinas e Japao. A Empresa tomara as medidas adequadas, em conformidade com a legislacao aplicavel, para garantir que suas informacoes pessoais permanecam protegidas. Essas medidas incluem o uso de Clausulas Contratuais Padrao para salvaguardar a transferencia de dados para fora do EEE. Para solicitar mais informacoes ou obter copia dos acordos contratuais vigentes, entre em contato conosco. Consulte a secao de informacoes do contrato abaixo.

A Empresa descarta as informacoes pessoais apos cumprir os objetivos originais de coleta e uso das informacoes sem demora.
No entanto, as seguintes informacoes serao retidas pelo periodo especificado pelos seguintes motivos:

□ Retencao de informacoes de acordo com as diretrizes internas da Empresa
- Itens de retencao: Empresa, divisao, nome, endereco de e-mail (Knox), endereco de e-mail (Pessoal), data de inicio/termino do servico, Numero de telefone, numero de celular, endereco de e-mail (Pessoas 2o) e ID Knox
- Razoes para retencao: Prevencao de confusao no uso de servicos e respostas a possiveis conflitos em relacao a verificacao de identificacao, uso indevido, etc.
- Periodo de retencao: Um (1) mes apos o termino do servico

As informacoes pessoais sao eliminadas sem demora apos o cumprimento dos objetivos originais de coleta e uso das informacoes.
No entanto, as seguintes informacoes serao retidas pelo periodo especificado pelos seguintes motivos:

□ Procedimentos de descarte
As informacoes que os membros fornecem para o registro de membro e outras razoes serao retidas por um determinado periodo de tempo apos os propositos originais serem cumpridos e descartados de acordo com as diretrizes internas e outras legislacoes relacionadas para fins de protecao de informacoes (consulte o item 4º. Periodo de Retencao de Informacoes Pessoais Coletadas).
As informacoes pessoais mencionadas acima nao serao usadas para outros fins que nao o de retencao, exceto se exigido por lei.

□ Metodos de descarte:
As informacoes pessoais impressas em papel serao descartadas por uma trituradora de papel ou um incinerador. As informacoes pessoais em arquivos eletronicos sao excluidas por um metodo tecnico que proibe a regeneracao do registro.

A Empresa adota as seguintes medidas tecnicas/gerenciais a fim de garantir a seguranca no processamento de informacoes pessoais dos usuarios para evitar qualquer perda, roubo, vazamento, adulteracao ou dano de informacoes pessoais.

□ Estabelecimento e execucao do plano de gestao interno: A Empresa estabelece e executa um plano de gestao interno para protecao de informacoes pessoais.

□ Minimizando o numero de pessoas que lidam com informacoes pessoais e treinamento: A Empresa indica o numero minimo de pessoas que lidam com informacoes pessoais e implementa medidas para gerenciar informacoes pessoais de forma mais eficiente.

□ Restricoes de acesso a informacoes pessoais: A Empresa toma as medidas necessarias para monitorar o acesso as informacoes pessoais, concedendo, alterando e removendo o acesso aos sistemas de banco de dados em que as informacoes pessoais sao processadas. A Empresa tambem implanta e usa um sistema de prevencao de intrusao para controlar o acesso externo nao autorizado.

□ Acesso ao armazenamento de registros e prevencao de adulteracao: A Empresa retem registros de acesso do sistema de processamento de informacoes pessoais (por exemplo, registros da web, dados de resumo, etc.) por pelo menos seis (6) meses e permite funcoes de seguranca para evitar adulteracao, roubo e perda dos registros de acesso.

□ Criptografia de informacoes pessoais: As informacoes pessoais dos usuarios sao criptografadas para serem salvas e gerenciadas. Funcoes de seguranca adicionais sao usadas para dados importantes, incluindo criptografia ao salvar/enviar.

□ Medidas tecnicas contra hacking: A fim de evitar qualquer vazamento ou dano as informacoes pessoais causados por hackers ou virus de computador, a Empresa instalou softwares de seguranca com atualizacoes e monitoramento regulares, bem como um sistema em areas de acesso controlado para monitoramento e bloqueio tecnico/fisico. A Empresa tambem fornece monitoramento de trafego de rede e deteccao de qualquer tentativa de alterar ilegalmente as informacoes.

□ Controle de entrada para pessoas nao autorizadas: A Empresa estabeleceu e esta em operacao de procedimentos de controle de entrada para o local de retencao fisica do sistema de informacoes pessoais.

□ A Empresa nao coleta informacoes pessoais de criancas menores de 16 anos.

□ Os usuarios podem visualizar ou revisar suas informacoes pessoais ou cancelar a filiacao apos os procedimentos de verificacao de identidade em ‘Revisar Informacoes Pessoais’ (ou ‘Revisar Informacoes do Membro’) para visualizar/revisar informacoes pessoais ou ‘Cancelar’ para cancelar a filiacao (retirada do consentimento).
Os usuarios tambem podem entrar em contato com o Diretor de Privacidade por meio de documento escrito, telefone ou e-mail para o processo.

□ Se os usuarios solicitarem uma correcao sobre o erro de suas informacoes pessoais, essas informacoes pessoais nao serao usadas ou fornecidas ate que a correcao seja concluida.

□ As informacoes pessoais que foram canceladas ou excluidas a pedido dos usuarios ou de seus representantes legais serao processadas de acordo com o “Periodo de Retencao de Informacoes Pessoais Coletadas.” Essas informacoes nao podem ser acessadas ou usadas para quaisquer outros fins.

A Empresa ira instalar e operar um dispositivo que coleta automaticamente informacoes pessoais, incluindo cookies que constantemente encontram e salvam informacoes do usuario. Cookies sao arquivos de texto que os servidores do site da Empresa enviam aos navegadores dos usuarios e sao salvos no disco rigido dos usuarios.
A Empresa usa cookies, etc. para os seguintes fins:

□ Finalidades dos cookies, etc.
- Para fornecer marketing direcionado e servicos personalizados com base na analise da frequencia de acesso, tempo de visita, etc. de membros/nao membros e compreensao e rastreamento dos gostos e interesses dos usuarios, bem como participacao em eventos e numero de visitas, etc.
- Os usuarios tem a opcao de instalar cookies. Os usuarios podem configurar o navegador para permitir todos os cookies, confirmar cada vez que os cookies sao salvos ou bloquear todos os cookies.

□ Como bloquear cookies
Ex. Os usuarios podem definir a opcao do navegador para aceitar todos os cookies, confirmar cada vez que os cookies sao salvos ou bloquear todos os cookies.
- Configuracoes de opcoes (para Internet Explorer):
* Na guia do navegador, selecione Ferramentas> Opcoes da Internet> Pessoal
Pode haver restricoes aos servicos quando as instalacoes de cookies sao bloqueadas.

A Empresa designou um Diretor de Privacidade e um departamento responsavel por proteger as informacoes pessoais e lidar com as reclamacoes relacionadas da seguinte forma:

[Para Brasil]

Se voce tiver alguma duvida especifica, entre em contato conosco (Controlador de Dados no Brasil) em:
Data Protection Officer (DPO) Brasil
SDSLA Avenida Doutor Chucri Zaidan n. 1240, Sao Paulo SP, Brasil
Em caso de duvidas, entre em contato com nosso Pessoal nos seguintes canais:

Guilherme Ribeiro Leite e Jessica Degilio Violin, e-mail: dpo@samsung.com

[Para fora do Brasil]

□ Diretor de Privacidade
Name: Youngsun Shim
Departamento: Jefe De Grupo de Gestion De La Privacidade
Numero do telefone: +82-2-6155-1118
Endereco de e-mail: privacy.sds@samsung.com

□ Oficina de Servicio a la clientela
Nome: MooYeong Jeong (Lider de Grupo)
Departamento: Grupo Cloud Network SRE
Numero do telefone: +82-70-7010-3000
Endereco de e-mail: svpn@samsung.com

Os usuarios podem relatar todas as reclamacoes relacionadas a informacoes pessoais que possam surgir no processo de uso dos servicos da Empresa ao Diretor de Privacidade ou ao departamento responsavel. A Empresa fornecera prontamente as respostas adequadas as reclamacoes.
Para relatar ou consultar outras violacoes de informacoes pessoais, entre em contato com as seguintes instituicoes: