SAMSUNG SDI has established and operates an information security framework to protect its management information and core technologies. In particular, as the Company possesses national core technologies and national high‑tech strategic technologies related to automotive batteries, it operates dedicated protection systems in compliance with the Act on Prevention of Divulgence and Protection of Industrial Technology and the Act on Special Measures for Strengthening the Competitiveness of, and Protecting, National High‑Tech Strategic Industries.
The Company manages and oversees compliance with its information security policies among all stakeholders,
including employees and business partners, and supports sustainable growth through incident prevention and rapid response.
SAMSUNG SDI’s information security policy consists of ‘Basic Principles’ that must be observed to enhance the Company’s competitiveness, as well as ‘Implementation Guidelines’ that define the standards necessary to ensure compliance with these principles.
In addition, the Company operates dedicated metrics to assess and monitor the level of information security at its operational sites.
This policy applies to all tangible and intangible information assets owned, held, or generated by the Company, as well as to all stakeholders,
including employees, employees of partners, and all external visitors to the Company’s premises. SAMSUNG SDI annually reflects revisions and amendments to relevant domestic and international laws and regulations, advancements in IT technologies, and countermeasures for emerging security threats in its information security policy. The policy is disclosed through an online bulletin system to ensure that all employees are informed and actively participate in information security practices.
| Basic Principles (“InfoSecurity Regulation”) | Implementation Guidelines | |
|---|---|---|
| Description |
|
Detailed and technical implementation criteria for each principle |
We abide by the Personal Information Protection Act to ensure that personal data of our employees, customers and visitors is not lost, stolen, leaked, falsified, fabricated or damaged. To keep personal data secure, we take technical and managerial protection measures as well as safety measures as notified by the Personal Information Protection Commission.
SAMSUNG SDI operates a systematic Personal Information Protection Policy to safeguard the personal information of data subjects. Our publicly disclosed Privacy Policy incorporates convenience features and labeling(pictograms) to improve understanding among data subjects such as employees, customers, partners, and visitors. Through the Personal Information Internal Management Plan, we have implemented strengthened technical and managerial safeguards. In addition, the Visual Data Processing Device Operation and Management Policy ensures systematic management of our visual data processing devices and personal visual information. In particular, when SAMSUNG SDI entrusts personal information processing to partners, we require them to sign a “Personal Information Processing Entrustment Agreement.” This agreement restricts the use of personal information strictly to the scope of delegated business purposes. It also mandates the implementation of all necessary security measures. In addition, we enforce stringent oversight by requiring partners to conduct regular personal information protection training and self-assessments.
