Go straight to the text

Samsung Security Reporting Privacy Notice

  1. Effective Date: December 1, 2020
  2. At Samsung Electronics Co., Ltd. (“Samsung”), we know how important privacy is to our customers. Samsung is the data controller for Samsung Security Reporting. We created this Privacy Notice to make sure you understand how we collect and use your personal information.
  3. Our Privacy Policy at https://account.samsung.com/membership/terms/privacypolicy also applies to your use of Samsung Security Reporting. Our Privacy Policy contains more information about how we use your data. It also includes information about how to contact us. Please read our Privacy Policy in addition to this Privacy Notice. However, this Privacy Notice shall always prevail over the Privacy Policy in relation to how we use your information for Samsung Security Reporting.
WHAT INFORMATION DO WE COLLECT?
  1. Through Samsung Security Reporting, Samsung obtains and maintains information about you in various ways.
  2. Information You Provide Directly
    • Email address; and
    • Any communication you send or deliver to us with regards to your report
HOW DO WE USE YOUR INFORMATION?
  1. We use the information collected for the following purposes:
    • Examine, based on your report, security and privacy issues of Samsung’s products and services in order to promptly respond to emerging security threats and vulnerabilities;
    • identify and authenticate you so we can figure out from who we received the report;
    • Respond to your requests, inquiries, and instructions;
    • protect against, identify and prevent fraud and other criminal activity, claims and other liabilities; and
    • Comply with and enforce applicable legal requirements, relevant industry standards and our policies, including this Privacy Notice and the Privacy Policy.
  2. Samsung processes personal information for the purposes described above. Samsung’s legal basis to process personal information is outlined below:
personal data
To promote our business interests
GDPR Article 6(1)(f)
  • Examine, based on your report, security and privacy issues of Samsung’s products and services in order to promptly respond to emerging security threats and vulnerabilities;
  • identify and authenticate you so we can figure out from who we received the report; and
  • responding to your requests, instructions and inquiries
To comply with the law and legal processes
GDPR Article 6(1)(c)
  • Protect against, identify and prevent fraud and other criminal activity, claims and other liabilities; and
  • complying with applicable statutes and regulatory and court orders
WHO DO WE SHARE YOUR INFORMATION WITH?
  1. We will disclose your information internally within our business and to the following entities, but only for the purposes described above.
    • Other parties when required by law or as necessary to protect Samsung Security Reporting: for example, it may be necessary by law, legal process, or court order from governmental authorities to disclose your information. They may also seek your information from us for the purposes of law enforcement, national security, anti-terrorism, or other issues that are related to public security;
    • Other parties in connection with corporate transactions: we may disclose your information to a third party as part of a merger or transfer, acquisition or sale, or in the event of bankruptcy; and
    • Other parties with your consent or at your direction: in addition to the disclosures described in this Privacy Notice, we may share information about you with third parties when you separately consent to or request such sharing.
HOW LONG DO WE RETAIN YOUR INFORMATION AND WHERE DOES IT GO?
  1. How long your data will be retained depends on the legal basis relied upon to process your data. For example, data we process to perform our contract with you requires us to keep the data throughout the time you use Samsung Security Reporting. As long as you are an active user of Samsung Security Reporting, we will retain and process this data. Data such as your account information and device information and identifiers fall into this category.
  2. Data we process to promote our business interests, such as your usage of Samsung Security Reporting, is only kept for as long as needed for the purposes for which it was collected. For example, this data may be collected to perform analytics so we can develop improvements to Samsung Security Reporting, or we may process data to keep a record of inquiries you made through or about Samsung Security Reporting to improve your customer service experience.
  3. Please note, although we aim to retain your data for the time period described above, your data may be processed longer pursuant to applicable law. For example, if a specific statute mandates we require a certain piece of data, we comply and retain that data until the required retention period expires.
  4. As long as your data is retained by us your data will always be subject to appropriate safeguards.
  5. Your use of Samsung Security Reporting will involve the transfer, storage, and processing of your personal information to other countries; such countries include, without limitation, countries in the European Economic Area and the Republic of Korea. All international data transfers are subject to legal requirements to ensure that your personal information is processed safely and as you would expect.
UPDATES TO THIS PRIVACY NOTICE
  1. This Privacy Notice may be updated to let you know about changes in how we collect and process your information in Samsung Security Reporting or changes in related laws. The date when the document was last updated is shown at the top of this Privacy Notice.