Privacy Policy
CJ Bioscience is committed to protecting personal information and complies with relevant laws and regulations, including the "Personal Information Protection Act" and the "Act on Promotion of Information and Communications Network Utilization and Information Protection."
CJ Bioscience provides the following services based on the Ezbiocloud integrated account:
1. EzbioCloud
2. TruebacID
3. NGS Analysis Service
4. NGS Analysis Data Download Site (https://data.cjbioscience.com/)
This Privacy Policy applies to the use of the aforementioned services and transparently discloses the company's policies and procedures for protecting our customers' valuable personal information.
CJ Bioscience will do its utmost to prevent the leakage of your personal information and to protect you from potential harm.
1. Purpose of processing personal information, items collected, retention and period of use
CJ Bioscience collects personal information for the following purposes to provide seamless services.
Currently, related services (TruebacID, NGS Analysis Data Download Site) are accessible through the Ezbiocloud account, and no additional personal information is collected for basic service use.
However, when requesting NGS analysis services, we collect mobile phone numbers to ensure smooth service delivery.
CJ Bioscience does not collect personal information without the consent of the data subject and does not use it for purposes other than those consented to.
[EzbioCloud Integrated Membership Information]
|
Separation |
Collection Items |
Purpose |
Retention and Usage Period |
|
|
EzbioCloud Integrated Membership Registration |
Email, Password, Affiliation, Title, Name, Country |
Required |
Membership registration and account management, delivering notifications, and securing communication channels for customer inquiries and other correspondence |
Until membership withdrawal ※ However, in cases where investigations or inquiries are ongoing due to violations of relevant laws, until the completion of such investigations or inquiries |
|
Interest |
Optional |
Service improvement and development of personalized services |
||
|
Newsletter Subscription Consent |
Optional |
Providing event information and participation opportunities, marketing and promotions |
Until unsubscribing from the newsletter or membership withdrawal |
|
[Additional Information for NGS Analysis Service Use]
|
Separation |
Collection Items |
Purpose |
Retention and Usage Period |
|
|
NGS Analysis Service |
Mobile Phone Number |
Optional |
Securing a communication channel for NGS analysis service requests |
Until membership withdrawal |
2. Consignment of Personal Information Processing Tasks and International Transfer
CJ Bioscience transfers users' personal information internationally to provide seamless services and handle user inquiries. This information is transmitted using internet networks processed with security protocols (SSL).
When entering into consignment contracts, CJ Bioscience specifies in documents such as contracts: the prohibition of personal information processing beyond the purpose of performing the consigned tasks, technical and managerial protection measures, restrictions on re-consignment, management and supervision of the consignee, and matters concerning liability including compensation for damages. We supervise to ensure that the consignee processes personal information safely.
If there are any changes in the content of the consigned tasks or the consignee, we will disclose it promptly through this privacy policy.
[Consignment of Personal Information Processing]
|
Consignee |
Consigned Tasks |
|
Amazon Web Services Inc. |
Data storage and operation/management of computer systems |
[International Transfer of Personal Information]
|
Consignee |
Destination Country |
Time and Method of Transfer |
Privacy Officer Contact |
Personal Information Items Transferred |
Purpose of Use |
Retention and Usage Period |
|
Amazon Web Services Inc. |
United States |
Transferred via network at the time of service use |
https://aws.amazon.com/ ko/contact-us/ |
All personal information collected by the company as specified in the privacy policy |
Service registration and use |
Until membership withdrawal |
|
Datadog. Inc |
United States |
Transferred via network at the time of service use |
privacy@datadoghq.com |
Email, service usage records |
Service failure and security breach alerts, and service quality improvement |
Stored for 15 days after transfer |
3. Procedures and Methods for Destruction of Personal Information
① CJ Bioscience destroys personal information without delay when it becomes unnecessary, such as when the retention period has expired or the purpose of processing has been achieved. However, if there is a need to preserve personal information for a certain period as required by law, the company will retain the personal information for that period.
|
Separation |
Retention Bases |
Retention period |
|
Records about contracts or withdrawals, etc. |
The Consumer Protection in Electronic Commerce Act |
5 years |
|
Records of payments and supplies of goods and services |
The Consumer Protection in Electronic Commerce Act |
5 years |
|
Records of consumer complaints or dispute handling |
The Consumer Protection in Electronic Commerce Act |
3 years |
|
Keeping records of connections |
Communications Privacy Act |
3 months |
② If personal information must continue to be preserved in accordance with other laws, even though the retention period agreed upon with the data subject (user) has expired or the purpose of processing has been achieved, CJ Bioscience stores such information in a separate location.
③ The procedures and methods for destroying personal information are as follows:
Destruction Procedure: Personal information collected for service use is destroyed without delay when the purpose of use is achieved. However, if it needs to be stored for a certain period due to internal policies or other relevant laws, it is transferred to a separate database and stored for a certain period before being destroyed.
Destruction Method: Personal information printed on paper is destroyed by shredding with a shredder or by incineration. Personal information stored in electronic file format is deleted using technical methods that prevent the recovery of the records.
4. Measures to secure the safety of personal information
CJ Bioscience takes the following measures to secure the safety of personal information:
Administrative Measures
∙ We have established and implemented an internal management plan for the safe management of personal information.
∙ We conduct information security training for all employees at least once a year.
∙ We limit access to personal information to a minimum number of personnel and provide periodic training to those handling personal information.
Technical Measures
∙ Information used for authentication (passwords) is stored using one-way encryption to prevent decryption. For different types of personal information, we apply encryption technologies that meet the levels required by relevant laws when storing and transmitting personal information.
∙ We have installed security programs to prevent unauthorized external transmission of personal information.
∙ We manage access rights differentially, allowing only necessary personnel to access the information for work purposes.
Physical Measures
∙ We operate protected areas such as computer rooms and data storage rooms, controlling access to these areas.
5. Purpose of Automatic Personal Information Collection and Right to Refuse
CJ Bioscience uses 'cookie' information that frequently stores and retrieves user information to provide personalized services. A cookie is a very small text file sent by the server used to operate the website to the user's browser and stored on the user's computer hard disk.
Cookies do not automatically or actively collect personally identifiable information, and users can refuse or delete the storage of these cookies at any time.
① Purpose of Using Cookies, etc.
CJ Bioscience uses "Google Analytics", a web analytics service provided by Google, Inc. (hereinafter 'Google'), to understand website visits, usage patterns, and user scale, aiming to provide optimized information to users.
The processing of information collected through "Google Analytics" is subject to Google's Privacy Policy and Google Analytics Terms of Service.
1 Google Privacy Policy: https://www.google.com/intl/ko/policies/privacy/
2. Google Analytics Terms of Service: https://www.google.com/analytics/terms/kr.html
CJ Bioscience does not collect personally identifiable information through "Google Analytics" and does not combine the collected information with personally identifiable information obtained through other channels.
② How to Refuse Cookie Settings
Users have the choice regarding cookie installation. Therefore, users can refuse (opt-out) automated cookie information collection through the following methods:
Allow/Block Cookies in Web Browsers
Chrome: Web browser settings > Privacy and security > Clear browsing data
Edge: Web browser settings > Cookies and site permissions > Manage and delete cookies and site data
Allow/Block Cookies in Mobile Browsers
Chrome: Mobile browser settings > Privacy and security > Clear browsing data
Safari: Mobile device settings > Safari > Advanced > Block all cookies
Samsung Internet: Mobile browser settings > Privacy > Delete browsing data
Install Google Analytics Opt-out Browser Add-on: https://tools.google.com/dlpage/gaoptout
6. Personal Information Protection Officer
CJ Bioscience has designated a Personal Information Protection Officer as follows to take overall responsibility for personal information processing and to handle complaints and remedies related to personal information processing. For all inquiries, complaints, and remedies related to personal information protection that arise while using the company's services (or business), you can contact the Personal Information Protection Officer and the responsible department. CJ Bioscience will respond to and process user inquiries without delay.
|
Name |
Tel |
|
|
|
Privacy Officer[CPO] |
Chalita Williams Mauricio Antonio |
+82-6078-3488 |
bs.privacy@cj.net |
|
Privacy Manager |
Yun Byung Wook |
7. Rights and Obligations of Data Subjects (Users) and Legal Representatives, and Methods of Exercise
① Data subjects (users) may exercise their rights to access, correct, delete, or suspend the processing of their personal information held by the company at any time.
② The rights mentioned in paragraph (a) can be exercised according to Article 41, Paragraph 1 of the Enforcement Decree of the Personal Information Protection Act through the following methods, and CJ Bioscience will take action without delay:
To access or correct personal information, click on "Edit Personal Information" (or "Modify Member Information", etc.) on the website, go through the identity verification process, and directly access or correct the information. To withdraw consent, click on "Withdraw Consent (Cancel Membership)", go through the identity verification process, and directly withdraw consent (cancel membership). Alternatively, you can contact us at bs.privacy@cj.net, in writing, or at 02-6078-3488. After identity verification, the information will be immediately deleted, and the data subject's (user's) personal information will be processed so that it cannot be reproduced or used for any reason or method.
③ The rights mentioned in paragraph (a) can also be exercised through a legal representative of the data subject (user) or a delegated agent. In this case, a power of attorney must be submitted in accordance with the "Notice on Personal Information Processing Methods".
④ The right to access information and request suspension of processing may be restricted in accordance with Article 35, Paragraph 4 and Article 37, Paragraph 2 of the Personal Information Protection Act.
⑤ Requests for correction and deletion of personal information cannot be made if the personal information is specified as subject to preservation under other laws.
⑥ When a request for access, correction, deletion, or suspension of processing is made in accordance with the rights of the data subject (user), CJ Bioscience verifies whether the person making the request is the data subject themselves or a legitimate representative.
8. Request for Access to Personal Information
In accordance with the Personal Information Protection Act, data subjects (users) can request access to their personal information from the department below. CJ Bioscience will strive to process data subjects' requests for access to personal information promptly.
∙ Department: BIO Digital Platform
∙ Contact: bs.privacy@cj.net
9. Consultation and Reporting of Personal Information Infringement
① Data subjects can apply for dispute resolution or consultation from organizations such as the Personal Information Dispute Mediation Committee to seek remedies for personal information infringement. For other reports or consultations regarding personal information infringement, please contact the following institutions:
1) Personal Information Infringement Report Center: 118 (without area code) (http://privacy.kisa.or.kr)
2) Personal Information Dispute Mediation Committee: 1883-6972 (www.kopico.go.kr)
3) Cyber Investigation Department of the Supreme Prosecutors' Office: 1301 (without area code) (www.spo.go.kr)
4) Cyber Safety Guardian of Korean National Police Agency: 182 (without area code) (http://www.police.go.kr/www/security/cyber.jsp)
② CJ Bioscience strives to guarantee the right to self-determination of personal information for data subjects and to provide consultation and remedies for damages caused by personal information infringement. If you need to report or consult, please contact the department in charge below.
∙ Department: BIO Digital Platform
∙ Contact: bs.privacy@cj.net
10. Changes to the Personal Information Processing Policy
This Personal Information Processing Policy is effective from the date of implementation. In case of any additions, deletions, or corrections to the content due to changes in relevant laws and policies, we will notify you promptly through our website.
Effective Date : 2024-10-23