Privacy Policy
LIN LLC (hereinafter referred to as the “Firm”) establishes and discloses this Privacy Policy in accordance with Article 30 of the Personal Information Protection Act to protect the personal information of data subjects and to ensure the prompt and efficient handling of related complaints.
Article 1 (Categories of Personal Information Processed; Purpose of Processing; Retention and Processing Period)
The categories of personal information processed by the Firm, the purposes of processing, and the applicable retention and processing periods are as follows:
1. Personal Information of Clients (including Prospective Clients)
| Categories of Personal Information Processed |
Name, contact information (telephone number, email address), address, company name, position and title within the company, bank account number, and other relevant information. |
| Purpose of Processing |
Performance of legal services for clients; distribution of newsletters, promotional materials, and other publications issued by the Firm; provision of information and invitations to events hosted by the Firm; tax reporting; and other related communications. |
| Retention Period |
Until the purposes of processing described above have been fulfilled. |
2. Personal Information of Employees and Staff
| Categories of Personal Information Processed |
- Mandatory Information Collected: Name; Resident Registration Number; contact information (telephone number, email address); address; educational background; professional qualifications and certifications; employment history; military service record; bank account number; and other relevant information.
- Optional Information Collected: Vehicle information; family information; and other supplementary details. |
| Purpose of Processing |
For purposes related to the recruitment, human resources management, and provision of employee benefits for the Firm’s officers and employees, including the execution and maintenance of employment contracts; payment of wages and severance benefits; training; issuance of certificates and official documents; provision of employee and family benefits; and administration of insurance and pension matters. |
| Retention Period |
Up to three (3) years following the employee’s retirement or termination of employment. |
3. Personal Information of Job Applicants
| Categories of Personal Information Processed |
- Mandatory Information Collected: Name; gender; date of birth; contact information (telephone number, email address); address; educational background; academic records (undergraduate, law school, language proficiency, etc.); professional qualifications and certifications; employment history; military service record; and other relevant information.
- Optional Information Collected: Family information. |
| Purpose of Processing |
To conduct recruitment procedures for the Firm’s officers and employees and to establish and maintain a talent database. |
| Retention Period |
Up to three (3) years following the conclusion of the recruitment process. |
Article 2 (Provision of Personal Information to Third Parties)
The Firm, as a general rule, processes personal information of data subjects only within the purposes specified in Article 1. Personal information will be provided to third parties only when the data subject has given prior consent or when required by applicable laws and regulations, including the Personal Information Protection Act.
Article 3 (Outsourcing of Personal Information Processing)
The Firm does not currently outsource the processing of personal information to any third party. If the Firm decides to outsource any personal information processing in the future, it will notify data subjects of the entrusted party, the scope of outsourced tasks, and the outsourcing period through this Privacy Policy.
Article 4 (Rights and Obligations of Data Subjects and How to Exercise Them)
① Data subjects may exercise their rights to access, correct, delete, or request the suspension of the processing of their personal information in accordance with the Personal Information Protection Act and other relevant laws. The Firm shall take prompt action in accordance with the applicable legal requirements.
② The rights described in Paragraph 1 may be exercised through a legal representative or an authorized agent. In such cases, a power of attorney in accordance with the Enforcement Rules of the Personal Information Protection Act must be submitted.
③ Data subjects must not infringe upon the personal information or privacy of themselves or others in violation of the Personal Information Protection Act or other applicable laws while exercising their rights.
Article 5 (Destruction of Personal Information)
① When the retention period of personal information specified in Article 1 has expired, or when the purpose of processing the personal information has been achieved, or when the information is otherwise no longer necessary, the Firm shall, unless there is a legitimate reason to retain it, promptly destroy the personal information in accordance with the Personal Information Protection Act and other applicable laws.
② Personal information stored in printed or written form shall be destroyed by shredding or incineration, and personal information in electronic form shall be permanently deleted using a method that makes restoration impossible.
Article 6 (Measures to Ensure the Security of Personal Information)
The Firm takes the following measures to ensure the security of personal information:
① Administrative Measures: Establishment and implementation of internal management plans, regular employee training, and related administrative controls.
② Technical Measures: Management of access rights to personal information processing systems, installation of access control systems, encryption of unique identifiers and sensitive information, and deployment of security programs.
③ Physical Measures: Access control to computer rooms, document storage areas, and other physical facilities.
Article 7 (Amendments to the Privacy Policy)
If the Firm amends this Privacy Policy, it will disclose the effective date of the changes and the details of the amendments on an ongoing basis.
Article 8 (Personal Information Protection Officer)
① The Firm designates a Personal Information Protection Officer to oversee all matters related to the processing of personal information and to handle complaints or provide remedies for data subjects regarding personal information processing, as follows:
| Chief Privacy Officer |
Name : Yong Gap KIM
Position : Attorney at Law
Contact : 82-2-3477-8695, ygkim@law-lin.com |
Personal Information
Protection Department |
Department Name : Business Management Department
Person in Charge : Sunhye LEE, Head of Division
Contact : 070-8807-9035, sunhye.lee@law-lin.com |
② Data subjects may direct any inquiries, complaints, or requests for remedies related to the protection of personal information arising from the use of the Firm’s services or business to the Personal Information Protection Officer or the relevant department. The Firm will respond to and handle such inquiries without delay.