Navigation and Content

Dear User,

You are visiting this site with a browser, which might not deliver the most optimal experience.

You are still able to proceed, but in order to best experience this page, we recommend using Edge, Firefox and Chrome.

You are in  Republic of Korea
or Select a different location

 

 

Scope of this Privacy Notice

Deutsche Post AG and its subsidiaries operating under the brand DHL (hereinafter called 'DHL') is pleased that you have visited our website and are interested in our company, products and services. It is important to us to protect your personal data during handling throughout the entire business process. 

In the following, we explain what information DHL collects when you visit our website and how this information is used.

This Privacy Notice applies to all users of our services, websites, applications, features or other services anywhere in the world, unless covered by a separate Privacy Notice. This Privacy Notice applies to the following categories of individuals:

  • Shippers: shippers, including their employees, or individuals who send a shipment
  • Shipment receivers: any individual who receives a shipment
  • Persons showing interest in us and our services
  • Business partners: business partners, including their employees
  • Employment candidates: individuals that apply for a job with us

 

All the above subjects are referred to as “you” or “your”.

 

What is Personal Data?

Personal data means any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. This includes information such as your real name, address, telephone number and date of birth. Information which cannot be linked to your real identity - such as favorite websites or number of users of a site - is not considered personal data.

  • This Privacy Notice applies for the data processing carried out by:

    Deutsche Post AG
    Charles-de-Gaulle-Str. 20
    53113 Bonn
    Germany


    Data Protection Officer of controller, contact details:

    Deutsche Post AG
    Global Data Protection
    53250 Bonn

    If you have queries with regard to the processing of your personal data, please contact the Data Protection Officer.

    If you have any further queries regarding data protection in connection with our website or the services offered there, please contact data protection:


Types of Data We Process

We only process your personal data when required for a specific and allowed purpose. 

CONTACT DATA

Information to contact you e.g. when you use one of our services. 

Such as: your name, phone number, address, email address

PROFILE DATA

Information on your dhl profile e.g. to set your delivery preferences.

Such as: your delivery preferences, order

SHIPMENT DATA

Information enabling the pick-up and delivery of your shipment e.g. status of your shipment.

Such as: your address, shipment documents, shipment no.

SURVEY DATA

Information communicated by you to one of our employees or by filling in an online survey e.g. when you call our customer service.

Such as: your name, email, phone number


What Are the Purposes of and the Legal Basis for the Processing of Personal Data?

  • DHL is committed to preserving the privacy of users of our websites. When you visit our web pages, The following data are collected: IP address, hostname of the accessing computer, website from which you accessed this website, a list of the sites you visited within the scope of our overall Internet presence, the date and duration of your visit, notification of whether the visit was successful, volume of data transferred, information about the identification data of the browser type and operating system used by you.  Temporary storage of this data is necessary during your visit to the website in order to allow the website to be delivered to you. Further storage in log files is performed to ensure the functionality of the website and the security of our IT systems. The legal basis for the processing of the aforementioned data categories is therefore Art. 6 (1) (f) of the European General Data Protection Regulation (GDPR). Due to the said purposes, in particular to guarantee security and a smooth connection setup, we have a legitimate interest to process this data.

    Additional personal information such as your name, address, telephone number or e-mail address is not collected unless you provide this data voluntarily, e.g. while completing an online contact form, as part of a registration, survey, competition or an information request.

    The data are deleted as soon as they are no longer needed to achieve the purpose for which they were collected. For the provision of the website, this is the case when the session terminates. The log files (access logs) are kept for administrators to access directly and exclusively for a period of 24 hours. After that, they are only available indirectly through a restore from backup tapes and are permanently deleted after 30 days.

    As far as you have enabled geo localization functions in your browser, respectively in your operating system we will use this data to offer you location-based services (e.g. location of the nearest branch, packing station etc.). The legal basis for geo-localization is your consent according Art. 6 (1) (a) GDPR by enabling the respective function. We will not use this data for any other purpose. If you disable this function your data will be deleted in due time.

  • This website uses cookies and similar technologies, (hereafter “technologies”), which enable us, for example, to determine how frequently our internet pages are visited, the number of visitors, to configure our offers for maximum convenience and efficiency and to support our marketing efforts.

    When you access our website, a Privacy Preference Center will inform you that technically necessary cookies are set and, in addition, that your consent is required to the use of certain technologies, such as analytical cookies or similar technologies.

    The processing of data by means of technically necessary cookies is based on our legitimate interest according to Art. 6 (1) f) GDPR to ensure that you can use our website the best possible way, to ensure that our website operates correctly and to guarantee an convenient and undisturbed user experience. These kinds of cookies are stored exclusively for the duration of your visit to our website. They are automatically deleted when you close your browser.

    In addition, you will be informed via the Privacy Preference Center  that we use other technologies  (performance, functional or analytics technologies) for storing information about visitors who repeatedly access one of our internet pages. The purpose of using these technologies is to be able to offer you optimal user guidance as well as to "recognize" you and thus be able to present (as much as possible) diversified internet pages and new contents during repeated use. These technologies will only be processed on the basis of your prior given consent according to Art. 6 (1) a) GDPR.

    You will find more information under the Privacy Preference Center  including the option to revoke a given consent.

    Notwithstanding the information in the Preference Center, and only if you have consented to the use of cookies and other technologies as described above, we also use them for the purposes described below.

  • 1. Introduction

    Deutsche Post AG (hereinafter called 'DHL') is pleased that you have visited our social media presences and are interested in our company and our products and services. In the following, we would like to inform you about certain issues related to data protection that apply when you visit our social media presences.

    • Our social media presences are made available by the respective operators of the social media platform pursuant to the applicable terms and conditions of use. The respective platform operator is solely responsible for the technical operation of this profile.
    • DHL is solely responsible for the content that DHL posts on this page (such as information about our company, products, services, sweepstakes, campaigns) and for our interaction with visitors to our profile.
    • The operators of the social media platform operate the entire IT infrastructure of the platforms. It makes its privacy policy available to users and has its own separate relationship with registered users of the platform. The operators of the social media platforms are solely responsible for all data protection topics involving your user profile, to which we have no access.
    • We have no influence over the data processing by the operators of social media platforms who collect them. Furthermore, we have no information regarding the extent to which, the purposes for which or the length of time that the operators of the social media platforms store personal data and possibly analyze, link or transfer them to third parties.
    • Please note that your personal data can, under certain circumstances, also be processed outside of the European Union/European Economic Area. This could result in data protection risks for users because an adequate level of data protection cannot be guaranteed in such cases and the ability to assert data subject rights is limited.
    • Please see the respective privacy policies and cookie policies for the social media platforms to learn more about their data processing activities and how you can exercise your rights vis-á-vis the operators of the social media platforms.

      Facebook: https://www.facebook.com/policy.php

      Instagram: https://privacycenter.instagram.com/policy

      Twitter: https://twitter.com/de/privacy

      LinkedIn: https://de.linkedin.com/legal/privacy-policy

      YouTube: https://policies.google.com/privacy?hl=de

      TikTok: https://www.tiktok.com/legal/privacy-policy-eea?lang=en

    • If you would like to contact DHL directly – in other words, without the involvement of the social media platforms – please use the contact service on our website.

    2. Contacting the data controller and data protection officer

    DHL is the data controller for the information it posts and also for the data processing that falls in its area of responsibility for the following social media presences:

    To the extent that it concerns the processing of personal data as part of page insights, the following platform operators are jointly responsible, along with us, for data processing. Joint data processing is based on an agreement between the joint controllers pursuant to Article 26 of the General Data Protection Regulation (GDPR).

    3. Purpose and legal basis of processing

    3.1. Data processing in connection with our social media presences

    We make use of our social media presences to inform you about, for example, our company, products, services, campaigns and sweepstakes and to interact with you regarding various topics and respond to your inquiries. The data processing performed in this connection is undertaken to safeguard our legitimate interests in accordance with Article 6(1)(f) of the GDPR. Our legitimate interest lies in public relations work and communication.

    The social media platform operator publishes the information you provide on our profile, such as comments, likes, images and videos, and we process this information solely for the abovementioned purposes. We reserve only the right to erase illegal content should this be necessary. This applies, for example, to posts that constitute infringements of the law or are unlawful, hate comments, suggestive comments (explicitly sexual content) or attachments (such as images or videos), which under circumstances violate copyrights, privacy rights, criminal law or Deutsche Post AG’s ethics rules.

    Data are also collected for the purpose of holding and processing sweepstakes. The details, such as which data are processed and the purpose of the processing, can be found in the privacy notices and terms and conditions of the respective contest.

    If you would like to exchange personal data with us, we recommend that you contact our customer service

    3.2. Data processing of page insights for statistical purposes

    The social media platform operators from Facebook, Instagram and LinkedIn provide us with page insights, for which we are jointly responsible together with the platform operators. Page insights are anonymous statistics that are generated as a result of certain events and are tracked by social media platforms via cookies and similar technologies when a user such as you interacts with our social media profile. We can use the page insights, which contain no personal data, to see which content is particularly accessed by which group of individuals. This allows us to optimize our social media presence. This represents a legitimate interest on our part for the processing that takes place. The legal basis for data processing related to page insights is Article 6(1)(f) of the GDPR. We would like to point out that data processing can also take place independent of whether you are logged in or registered on the social media platform. We are unable to influence the use of cookies and similar technologies on the social media platform and, in this respect, refer you to your ability as a user to change your settings regarding the related data processing via the respective cookie banner on the social media platform (granting or not granting your consent). 

    3.3. Social media monitoring

    We use social media monitoring in order to obtain a picture of how our business, our products and our services are viewed and, based on this, identify potential for improvement. This entails analyzing posts on the social media platform based on the channel links used and relevant hashtag links. Only those posts to which you allow full public access will be used for this. The legal basis for processing personal data as part of social media monitoring is Article 6(1)(f) of the GDPR because we have a legitimate interest in identifying in freely accessible statements possible deficits in our products or services and responding appropriately. 

    4. Rights of the data subject

    You may exercise your rights as set forth in this Privacy Notice by using our contact form.

    If you would like to exercise your rights as a data subject vis-à-vis the social media platform operators, please use the contact options provided by the platform operators on the social media platforms. Should we receive an inquiry that falls within the area of responsibility of the social media platforms, we will forward it to them for further processing.

    5. Storage periods

    The length of time during which your data are stored will depend on the particular context of the processing and will be based on the parameters imposed by data protection law. All public posts you make on our profiles will remain on our profiles for an unlimited time, unless we erase them on the basis of an update of the original post, a breach of law or an infringement of our guidelines. You may of course erase your posts, comments and the like at any time yourself or exercise your right to have us erase them.

    In the case of the social media platform operators’ erasure of your data, we have no influence over this and therefore refer you to the privacy policy of the respective platform operator.

Performance of a Contract

For pre-contractual and contractual reasons, we also need personal data to provide our services and comply with the obligations arising from contractual agreements concluded with you.

On dhl.com we offer the following services:

  1. Get a Quote
  2. DHL for Business
  3. Track & Trace
  4. Ship Now
  5. Customer Service
  • In order to get back to you via email or phone to make you an offer, you can use one of our Get a Quote services. Depending on the country you are residing and in order to get you to the right expert team or tool within DHL, we either ask whether you would like to ship parcels or documents, cargo / freight or international business mail and whether you are a business or private customer. 

    Based on this information your request will be directed to our business units  [DHL ExpressDHL Global ForwardingDHL FreightDHL ParcelDHL eCommerce SolutionsDHL Paket] and you will immediately receive a product card with price and further details from the business unit(s) which offer best suits your request. It could also be that we ask you for the following details: country of origin and destination including city and postcode (we need an approximate origin and destination in order to give you a quote for your shipment as accurate as possible) and weight and dimension of the shipment. Depending on your request we might also ask the quantity, whether documents or dangerous goods are involved or whether it is palletized or stackable. This information is also forwarded to one of our business units  [DHL ExpressDHL Global ForwardingDHL FreightDHL ParcelDHL eCommerce SolutionsDHL Paket]  and you will immediately receive a product card shown with price and further details regarding your shipment and optional add-ons.

    By clicking on the “continue to booking” button you will be forwarded to the respective business unit´s  booking tool system [MyDHL+myDHLiMyDHL Parcel]. Hence, on dhl.com we basically do not collect or otherwise process your personal data for our Get a Quote service. However, if data is nevertheless considered personal, such as the city and postcode, the legal basis for this is the contract in progress (Art. 6 (1) b) GDPR) and a legitimate interest in being able to submit our offer as accurately as possible (Art. 6 (1) f) GDPR).

    Provided that no statutory or contractual retention periods needs to be observed, your request will be stored for a maximum of 30 days with the relevant business unit which finally made the quote as proof of proper processing and for the purpose of further optimizing services. On dhl.com the respective data is stored for a maximum of 30 days if you have used the safe shipment service and unless not earlier deletes by yourself.

  • If you are using or DHL for Business service we ask you for the shipping destination, the volume and the frequency of the shipment. Based on this information and your shipping needs, your request will be send to our business units [DHL ExpressDHL Global ForwardingDHL FreightDHL ParcelDHL eCommerce SolutionsDHL Paket]  and allocated to those which services best fit your requirements. In order to get in touch with you as soon as possible we also ask you for your company´s name, your name, business address, email address and phone number. This data will also be forwarded to the respective business units and is necessary to take steps at your request prior to entering into a contract and / or for the performance of a contract. The legal basis is therefore Art. 6 (1) b) GDPR.

    Provided that no statutory or contractual retention periods need to be observed, your request will be stored for a maximum of 30 days with the relevant business unit which finally made the quote as proof of proper processing and for the purpose of further optimizing services.

  • You can use the Track and Trace service to track shipments addressed to you or sent by you, and also view the expected time of delivery. To this end the tracking information is sent to the respective business unit to find the status of the shipment. You will also receive all important detailed information about your shipment from the respective business unit. In addition, the sender or recipient can also receive further information about the shipment in question by e-mail or SMS. For this purpose, the e-mail address or mobile phone number of the recipient of the notification can be stored and the notification activated. In this context, the person entering the data must ensure that the notification recipient agrees to the processing of e-mail address, mobile phone number and notification.

    The following data are processed as part of shipment tracking: shipment number, name and address of the sender, name and address of the recipient, e-mail address of the sender/recipient if applicable, name and address of the alternative recipient if applicable, customer data of the sender, product or service name, shipment history, signature of the recipient, confirmation that a minimum age has been checked (over 16/over 18).

    The data are processed for the purpose of fulfilling the contract on the basis of Art. 6(1) (b) GDPR.

    To enhance user convenience, when using shipment tracking DHL automatically generates a list of the last shipment number searched for via the shipment search: This function saves you having to re-enter the shipment number when checking the shipping status of your shipment. In this context, you can name individual shipments according to your preference (“Shipment title"). For this purpose, the application saves a list of the last shipment searches in a cookie. 

  • Our Ship Now service leads you to our various customer portals of our business units [DHL ExpressDHL Global ForwardingDHL FreightDHL ParcelDHL eCommerce SolutionsDHL Paket] (e.g. MyDHL+, DHL eCommerce Web Portal, my DHLi or DHL Interactive). You can also continue as guest and you will be forwarded to our business unit which best meets you shipping needs. In any case we will not process your personal data at this stage. Same applies if you would like to schedule a redelivery. After a few questions about your shipment you will be directed to our various customer portals where you can arrange the redelivery in detail.

  • You can contact us at any time with questions via our Customer Service. Depending on the respective business unit, you will either be forwarded directly to the website of the respective business unit or we ask you to fill out a contact form beforehand, which requests the following data categories and then forwards them to the respective responsible business unit: your customer reference no., your name, the name of your company, postal address, email address and telephone no. country / region and the sector you are working for. The legal basis is Art. 6 (1) (b) GDPR, as this processing is carried out in order to prepare or to fulfil a contract. Furthermore, you provide the data voluntarily for the purpose of contacting us, so your consent is another legal basis, Art. 6 (1) (a) GDPR.

    In addition you have the option to consent to promotional emails about our services. To this end we also forward your contact data to our business units [DHL ExpressDHL Global ForwardingDHL FreightDHL ParcelDHL eCommerce SolutionsDHL Paket] . The legal basis for this is your consent according to Art. 6 (1) (a) GDPR.

Further information on data protection in specific services and products is available at the relevant divisional Customer Portal and / or the respective local privacy notice.


Processing for Advertising Purposes

When you visit our web page we offer you a broad variety of information about DHL, about our products, services and events. In particular you can get information about our:

  1. Events & Webinars
  2. Delivered.
  3. Spotlight
  4. Newsletters
  • If you would like to participate in one of our Events and/or Webinars, you will be redirected to the appropriate registration page. There we basically collect the following personal data: your name, your email address and who is your main contact at DHL. Depending on the respective sector we may also ask for your company name, your seniority and whether you have previously done business with DHL. The legal basis is Art. 6 (1) (b) GDPR, as this processing is carried out in order to fulfil the contract (attending the event).

  • You have the option there to consent to promotional emails about our services. To this end we also forward your contact data to our business units [DHL Global ForwardingDHL FreightDHL ParcelDHL eCommerce SolutionsDHL Supply Chain] . The legal basis for this is your consent according to Art. 6 (1) (a) GDPR. You may unsubscribe at any time by clicking the relevant link at the bottom of the Spotlight mail. You can also revoke the consent at any time with effect for the future using the contact address provided.

  • If you subscribe to DHL Spotlight to know first about new articles we only collect your email address and it is not used for any other purpose. The legal basis for this is your consent according to Art. 6 (1) (a) GDPR. You may unsubscribe at any time by clicking the relevant link at the bottom of the Spotlight mail. You can also revoke the consent at any time with effect for the future using the contact address provided. If you unsubscribe from Spotlight or revoke your consent, the corresponding data will be removed or blocked from the mailing list and will no longer be processed for these purposes.

    Notwithstanding the foregoing, if you are an existing DHL customer, your postal data (e.g. name, address) will be processed to contact you in order to provide you with the latest information about our offers, news, products and services. Apart from an existing consent, which is based on Art. 6 (1) a) GDPR, we will process your e-mail address exclusively in order to provide you with information regarding DHL own and similar products. Legal basis for the aforementioned processing to keep you updated regarding our own and similar products is Art. 6 (1) f) GDPR. The processing of customer data for own direct marketing purposes is regarded as carried out for a legitimate interest. You have the right to object at any time to the said processing. To exercise your right, simply get in touch with us by using the contact details mentioned under "Who is Responsible".

  • If you register for one of our newsletters, we are entitled to use your e-mail address for this purpose. The legal basis for this data processing is your consent pursuant to Art. 6 (1) (a) GDPR. You may unsubscribe from the newsletter at any time by clicking the relevant link at the bottom of the newsletter. You can also revoke the consent at any time with effect for the future using the contact address provided. If you unsubscribe from our e-mail communications or revoke your consent, the corresponding data will be removed or blocked from the mailing list and will no longer be processed for these purposes.
    Including your e-mail address in a blocking list is effected in order to safeguard our legitimate interests pursuant to Art. 6 (1) (f) GDPR. Our legitimate interest lies in not sending you any information by e-mail in the future.

Data Retention & Third Parties

  • Career opportunities within DHL Group are as diverse as our teams all over the world. With approximately 600,000 employees in over 220 countries, we connect people, improving their lives. If you would like to apply for one of our open jobs you will find more information here and, also on data protection, here.

  • We will keep your data for as long as necessary to fulfill our purposes, to execute our contracts and to comply with any legal obligation. The retention period may differ per country based on applicable country laws.

    We continuously strive to minimize the retention period of data where the purpose, the law or contracts allows us to do so. The data that we collect based on your consent will be kept until you withdraw your consent.

  • DHL does not share, sell, transfer or otherwise disseminate your personal data to third parties and will not do so in future, unless required by law, unless required for the purpose of the contract or unless you have given explicit consent to do so. For instance, it may be necessary to pass on your address and order data to our contractors when you order products. Further information on data protection in specific services and products is available at the relevant Customer Portal.

    However, in the context of the data processing as described in this Privacy Notice and the respective legal basis given, DHL will transfer your data to the following categories of recipients:

    • DHL Group companies: transfer is required within the DHL Group, its legal entities and shared service centers to provide and improve our products and services (e. g. our Get a Quote or Frequent Shipment Services). Transfers can also occur to manage our relationship with you, to identify you, to answer your requests and to comply with your privacy rights.
    • Third party business partners: The transfer to third party business partners is limited to what is required by applicable law and / or in order to fulfill our contractual obligations.
    • Third party processors: which process data are contractually obliged to maintain strict confidentiality as per Art. 28 GDPR. DHL retains responsibility for safeguarding your personal data in such circumstances. The business partners follow the instructions of DHL, and this is guaranteed by technical and organizational measures, as well as by means of checks and controls.
    • Public authorities: transfer is required by applicable law (e.g. to fulfil a legal obligation during shipment processing).

    Your data is only transferred outside the European Economic Area (EEA) to other DHL Group companies, third party business partners or public authorities when permitted by applicable data protection law. In such cases, we will make sure that appropriate safeguards are in place to ensure the transfer of your data (e.g. our binding corporate rules, standard contractual clauses).


What Are My Data Subject's Rights?

You have the following rights:

You can request information as to what personal data is stored

You can request that we correct, delete or block your personal data provided these actions are permitted by law and in compliance with existing contractual conditions.

You can request to receive personal data you have provided in a structured, commonly used and machine-readable format.

You may lodge a complaint with the supervisory authority. 

  • You can obtain your information by contacting data protection here:

  • The right to object applies for all processing of personal data which is based on Art. 6 (1) f) GDPR.


How About Data Security

DHL takes the security of your data very seriously. We have implemented various strategies, controls, policies and measures to keep your data secure. We keep our security measures under close review. We use safeguards such as firewalls, network intrusion systems, and application monitoring. Where appropriate, we secure your data by using pseudonymization and encryption techniques when storing and transferring your data. For instance, your data is saved in a secure operating environment which is not accessible to the public. In certain cases, your personal data is encrypted by Secure Socket Layer technology (SSL) during transmission. This means that an approved encryption procedure is used for communication between your computer and the DHL servers if your browser supports SSL. We ensure that there are strict physical access controls in our buildings and certified data centers.

As a part of our security strategy, we have set up auditing programs to make sure that our systems and services comply with the DHL information security policy, and by extension the ISO 27001 standard.

In addition, we are taking a number of ongoing measures to reduce risk, such as (but not limited to) training our employees regularly and organizing incident simulation exercises by our Cyber Defense Center.

Should you wish to contact DHL by e-mail or contact forms, we would like to point out that the confidentiality of the information sent cannot be guaranteed. The contents of (e-mail) messages can be read by third parties. We therefore recommend you send us confidential information only by post.

  • Further information on data protection in specific services and products is available at the relevant Customer Portal.

  • The "DHL Group Data Privacy Policy" regulates the Group-wide standards for data processing with a special focus on so-called third country transfers, meaning transfers of personal data to countries outside the EU, which do not have an adequate level of data protection. If you are interested in learning more about the "DHL Group Data Privacy Policy", please download the following document:

    DHL Group Data Privacy Policy

DHL Korea Co., Ltd. Privacy Policy

DHL Korea Co., Ltd. (the “Company” or “DHL Korea”) is in compliance with the provisions applicable to personal information processors and online service providers under the applicable privacy laws, including the Personal Information Protection Act (the “PIPA”), the Act on Promotion of Information and Communications Network Utilization and Information Protection, Etc. (the “Network Act”), and the Use and Protection of Credit Information Act.

For the above purposes, DHL Korea has established and implemented this Privacy Policy in order to protect the personal information and rights of relevant data subjects (the “Data Subjects”) and to seamlessly handle and manage their grievances pursuant to Article 30 of the PIPA.

Any and all amendments to this Privacy Policy will be disclosed on the Company’s website.

This Privacy Policy has been amended as follows and will take effect as of August 1, 2023.

  • The Company’s purpose for processing the Data Subjects’ personal information are described below.  The Company processes personal information for the following purposes and does not use it for any other purposes.  If the purpose of use shall change, the Company will take appropriate measures, such as obtaining separate consents from Data Subjects as required under the PIPA.

    1. Providing services
      Verification of customers, provision of various services of the Company (including delivery service, membership service such as MyDHL+, customer number issuance service, customs clearance and customs response service, My Bill service, emergency passport express delivery service, On Demand Delivery service, internet website chat service, shipment security service, customs refund service, customs clearance code proxy issuance service), management of service usage details, preservation of service provision records, calculation of delivery fees and notification of delivered goods, delivery reservation, delivery of shipments, sending of contracts and invoices, provision of customized services, payment and calculation of unpaid amount, preparation of waybill, customs declaration, payment of customs duties and surtax, subscription to the shipment security service, packaging of delivered goods, provision of pick-up service, delivery tracking, prevention of fraudulent or unauthorized use by undesirable members, member management, response to customers’ inquiries and requests for services, provision of up-to-date changes and materials
    2. Response to customer inquiries or opinions and handling of complaints
      Identification of customers and their complaints, communication and notification for fact-finding, notification of handling results, dispute mediation and preservation of relevant records, prevention of indiscriminate postings, delivery of announcements, utilization of statistical data, improvement of internet website, response to inquiries and opinions
    3. Execution and performance of contracts
      Verification and identification of counterparties, decision on contract execution, guarantee of fair execution of contracts, performance of contracts such as payment of expenses and amounts for service provision, business communication within the scope necessary for execution and performance of contracts, delivery of invoice, payment or collection of rent, documentation of lawful execution and performance of contracts, management of overall status of contracts such as counterparties, contractual terms and conditions, details of payment, etc., business cooperation with related companies (head office, affiliates, etc.)
    4. Marketing and public relations activities
      Provision of information related to the Company’s services via phone, text message, mail, email, mobile messenger or direct marketing, conduct surveys, general marketing activities such as hosting various events including online events, handling of tasks related to hosting events (receiving event entries, selecting and contacting winners, delivering prizes, hosting events)
    5. Management of visitors and mail
      Management of visitors to prevent unauthorized access to offices and service centers, issuance of temporary access cards, prevention of security accidents and terrorist activities, parking management, identification of circumstances in the event of an accident, maintenance and management of the Company’s security, prior examination of visitors
    6. Performance of legal and administrative obligations of the Company
      Performance of various legal and administrative obligations of the Company pursuant to laws and regulations as well as orders and dispositions imposed by administrative agencies or relevant authorities based thereon, such as report and payment of various taxes including withholding of corporate income tax, value-added tax and income tax, issuance and delivery of receipts and tax invoices, compliance with international transport regulations
    7. Handling of tasks related to job applications
      Performance of tasks related to hiring employees with qualifications required by the Company and their admittance to the Company, confirmation (inquiry and verification) of applicants’ identity, academic background, career and qualifications, reference check, management of past application history, progress and management of hiring procedures, confirmation of health conditions and determination of job eligibility, consideration of obligations under the Employment Promotion and Vocational Rehabilitation of Disabled Persons Act (determination of eligibility for employment of persons with disabilities, performance of obligation to hire persons with disabilities, report of employment contribution for persons with disabilities, etc.), determination and notification of employment, determination of eligibility for preferential employment (determination of eligibility for additional points under the Act on the Honorable Treatment and Support of Persons of Distinguished Service to the State, etc.), confirmation of applicants’ intention of application, handling of relevant complaints and dispute resolution, creation of basic data of new employees upon determination of employment, confirmation of intention of application in the event of additional employment, operation of a pool of applicants (confirmation of intention of application in the event of additional employment), payment of travel expenses such as transportation expenses, etc., response to inquiries regarding job application
  • Key items of personal information processed by the Company pursuant to the consent provided by the Data Subjects or by applicable laws and regulations are as follows.  The actual processed items may somewhat vary depending on the circumstances in which the Company processes the relevant personal information.  However, if necessary, the Company obtains consent from the Data Subjects through the personal information consent form.  Thus, please refer to the consent form.

    1. Items related to handling inquiries
      Name, email address, mobile phone number, customer number, company, department, country/region, type of inquiry and content of inquiry, freight ID or tracking number, waybill number
    2. Items related to delivery service
      Sender information {name, company, country/region, address, email address, contact information (mobile phone number, office phone number, fax number), VAT/Tax ID, EORI number}, recipient information {name, company, country/region, address, email address, contact information (mobile phone number, office phone number, fax number, etc.), VAT/Tax ID}, details of shipment, whether the content of shipment is document/freight, value of shipment, whether the shipment security service is used, desired packaging method, selection of packaging, shipping charge, weight, size, date of shipment/arrival, expected date and time of delivery, payment information, customer number (if applicable), method of payment of customs duties and surtax, customs trade conditions, information on pick-up of goods upon reservation for pick-up (including total pick-up weight)
    3. Items related to MyDHL+ membership service
      Name, name of affiliated company (in the case of an individual, name of such individual), email address, contact information (office phone number, fax number, home phone number, mobile phone number, etc.), password, intention to apply for DHL customer number, frequency of delivery, address
    4. Items related to customer number issuance service
      Company name, name of person-in-charge, telephone number, business entity registration number, email address, address, whether the customer is a B2C customer and route, delivery address, quantity and frequency, location, information to be noted and information collected during the opening process
    5. Items related to customs clearance service
      Name, email address, telephone number (mobile phone number, office phone number), address, waybill number, personal customs clearance code, alien registration number, passport number, affiliated company (including company information such as customs clearance code), nationality (if the consignee is a foreigner), any and all personal information on other documents required for customs clearance (documents submitted to customs office)
    6. Items related to the shipment security service
      Personally identifiable information (name, address, telephone number, email address), information related to the transport accident (type of cargo, value of cargo, waybill number, place of shipment/arrival, cause of the accident, etc.), results of examination on payment of compensation, account information (bank name, account number, account name)
    7. Items related to DHL ProView service
      Name, job position, company name, address, country name, customer number, PIN number receipt route, email address, mobile phone number (telephone number), fax number
    8. Items related to My Bill service
      DHL customer number, company-related information (trade name, business entity number, address, country), name, email address, contact information (company or mobile phone number), job position, last DHL invoice (including number, invoice amount)
    9. Items related to On Demand Delivery service
      Name, address, email address, mobile phone number, password, waybill number, mobile phone number, preferred delivery method {including new delivery option, changed delivery address and name, changed delivery date and time zone, receipt method, designated recipient’s name (including building/unit number), gate/door code, delivery instructions}
    10. Items related to customs duties refund (for breach) service
      Name, address, mobile phone number, personal customs clearance code, email address, account information for refund (bank name, account number, account name), trade name, waybill number, business entity registration number, alien registration number, passport number (only for foreigners)
    11. Items related to customs clearance code proxy issuance service
      Name, email address, telephone number (mobile phone number, office phone number), address, alien registration number, passport number (only for foreigners)
    12. Items related to DHL reward service
      Name, email, contact information (mobile phone number), amount of payment for delivery and the amount of relevant points (amount accumulated and amount used), membership class
    13. Items related to emergency passport express delivery service
      Country of residence, name of diplomatic mission, consulate, whether the document security service is used, name of applicant, person who desires to have a passport issued (name, date of birth), telephone number, email address, ID, password
    14. Items related to related companies (affiliates)
      Name, company name, job title, business entity registration number, bank account number, address, name of person-in-charge, telephone number, email address, fax number, relationship with the Company’s employee
    15. Items related to job applicants

      - Name (Korean/English), gender, photo, date of birth (age), nationality, address and location of residence, information on veterans and persons of distinguished service, telephone number, mobile phone number, email address, academic background (name of school, major, degree, attendance period, location, acquired credits, grade, etc.), grade, military service, career (company name, job position, duties, salary level, reputation, etc.), information on overseas stay and training activities (exchange student, etc.), information on social activities, leadership and social service activities, language (language ability test score, etc.) and other qualifications (information on certificates held, etc.), award-winning experience (name of competition, competition organizer, award details, award date, etc.) and other information on rewards and punishment, hobby, specialty, self-introduction, SNS address, application route, credit status, disability status, inquiries regarding job application

      - Results of the Company’s evaluation, results of the personality and aptitude test, any and all information on other documents provided by the applicant to the Company (resume, letter of self-introduction, transcript, etc.)

      - Additional items to be collected from those applying as drivers: whether they have a driver’s license, vehicle types of which they are capable of driving, accidents that occurred and penalty points that were earned after obtaining the license, history of license suspension/cancellation

      - Additional items to be collected from interviewees (those who passed the document review process): information on designated/undesignated recommenders for reference check (information on companies or institutions of previous employment or superiors thereof such as name, affiliation, job position, contact information, etc.), results of reference check including performance evaluation, and for those applying for a job opening at the customer center, details of phone-response test recording

      - Additional items to be collected from interviewees (those who passed the document review process): current health conditions, history of past diseases and injuries, reasons for military exemption, information on criminal records, whether they belong to a group subject to sanctions imposed by the UN Security Council, the Official Journal of the EU, the Office of Foreign Assets Control, U.S. Department of the Treasury, the Bureau of Industry and Security, U.S. Department of Commerce, whether they are infected with epidemic diseases that necessitate quarantine as per the CDC guidelines  
    16. Items related to campaigns or events
      Information on those who entered online events such as name, email address, mobile phone number, telephone number, company name, address, company address, business entity registration number, access route, employee code of the person-in-charge, SNS (e.g., entrant ID, mobile phone number, address, customer number, person in charge of sales, other information provided at the time of entry or winning)
    17. Other automatically generated information
      Access IP information, cookies, service usage history, access logs
    18. Items related to customer feedback
      Name, mobile phone number, email address, telephone number, address, company name, waybill number, customer number, opinion on the Company’s service, etc. (including feedback and questions)
    19. Items related to visiting customers and other visitors
      Name, affiliated company and job title, email address, telephone number, address, purpose of visit, items stated in the entry/exit ledger (entry/exit number, affiliation, vehicle number, time of visit and visited department, reason for visit, person guiding the visitor, etc.)
    1. The Company will retain and use personal information related to the provision of services for (i) the period set forth in applicable laws and regulations, (ii) the period specified in the consent form for the relevant Data Subjects submitted at the time of collecting personal information, or (iii) the period from the date of submitting consent form for use and collection of personal information until the date when the purpose of processing personal information is achieved; provided, however, that the Company may retain and use such personal information even after the expiration of the relevant retention period only for the purpose of handling complaints and performing obligations under applicable laws and regulations.
    2. In principle, the Company will process and retain personal information until the delivery of service and payment and calculation of the unpaid amount are completed; provided, however, the Company will process and retain personal information until the termination of the relevant grounds for retention in the following cases:

      (1) Transaction records, such as labeling and advertising, contractual terms and performance thereof, under Article 6 of the Enforcement Decree of the Act on the Consumer Protection in Electronic Commerce, Etc.

      - Records on labeling and advertising: 6 months

      - Records on contracts, offers, payment of transaction amount or withdrawal of provision of goods: 5 years

      - Records on customer complaints or dispute settlement: 3 years (however, in the case of records on compensation claims: 5 years)

      (2) Electronic communication-related records under Article 41 of the Enforcement Decree of the Protection of Communications Secrets Act

      - The date and time of the communication, the starting time and the ending time of the communication, the registered number of the other party of the communication, point of use, data on tracking the location of the sending base station used for the electronic communication: 1 year

      - Computer communication records, internet log and data on tracking the access location: 3 months

      (3) In the case of evidentiary transaction records under Article 85-3(2) of the National Tax Basic Law, Article 116(1) of the Corporate Income Tax Law, Article 71 of the Value-Added Tax Law, etc., 5 years from the filing deadline

      (4) In the case of a recipient’s application for change of payment terms and confirmation letter, 1 year and 6 months from the date of submission to the Ministry of Economy and Finance

      (5) In the case of visitor (access) management records, 5 years; in the case of mail, 1 year
    1. In principle, the Company will process personal information of the Data Subjects within the scope of the purpose set forth in Article 1 of this Privacy Policy and will not process or provide to a third party beyond the original scope, without prior consent of the Data Subjects; provided, however, that the foregoing shall not apply to the following cases:

      - Where the Data Subjects have given prior consent to the provide or transfer personal information; and

      - Where the provision of personal information is required or permitted by laws and regulations, etc.
    2. The Company shall provide personal information to the following third parties:

      Recipient: Korea Customs Service (125)
      Recipient’s Purpose of Use: 
      Imposition and collection of customs duties, declaration of transportation, handling of customs clearance and customs response, examination and processing of customs duties refund, customs duties refund for breach and issuance of customs clearance code
      Items to be Provided: Name, email address, contact information (office, home, mobile phone, fax), address (home, office), waybill number, personal customs clearance code, alien registration number, passport number, affiliated company (including company information such as customs clearance code), nationality (if the consignee is a foreigner), any and all personal information on other documents required for customs clearance (documents submitted to customs office)
      Recipient’s Period of Retention and Use: Until the purposes of use of personal information are attained

      Recipient: National Tax Service (126)
      Recipient’s Purpose of Use: 
      Imposition, reduction and collection of various taxes including VAT
      Items to be Provided: 
      Name, email address, address, contact information (office, home, mobile phone, fax), address (home, office)
      Recipient’s Period of Retention and Use: 
      Same as above

      Recipient: 
      AIG (1544-2792)
      Recipient’s Purpose of Use: 
      Assessment of payouts of insurance proceeds related to cargo, investigation of the insured event (if necessary), payouts of insurance proceeds, handling of complaints and legal actions
      Items to be Provided: 
      Personally identifiable information (name, address, telephone number, email address), information related to the transport accident (type of cargo, value of cargo, waybill number, place of shipment/arrival, cause of accident, etc.), results of examination on payment of compensation, account information (bank name, account number, account name)
      Recipient’s Period of Retention and Use: 
      Same as above

      Recipient: 
      GRIP, Open Marketing Lab, Paymentwall, Global-e, 300CBT, gabiaCNS
      Recipient’s Purpose of Use: 
      Connection to e-commerce partners for customer consultations
      Items to be Provided: 
      Name, email address, phone number (office, mobile phone), company name
      Recipient’s Period of Retention and Use: 
      Same as above
    3. In the event of emergencies such as disasters, infectious diseases, incidents or accidents that cause imminent danger to life or body, and urgent property loss, the Company may provide personal information to relevant agencies without the consent of the Data Subjects as follows.  In such case, the Company will provide only the minimum personal information required under the applicable laws and regulations and will not provide it for any purpose other than the intended purpose.

      Classification: Response to disasters
      Applicable Law: Framework Act on the Management of Disasters and Safety
      Recipient:
       National (or Regional) Disaster Prevention and Countermeasures Headquarters
      Personal Information to be Provided:
      - Name, address and telephone number (including mobile phone number)
      - The following information for identification of travel routes, search and rescue :
      A. Information collected via CCTV
      B. Time and place of use of credit cards, debit cards and pre-paid cards

      Classification:
       Prevention and control of infectious diseases
      Applicable Law:  Infectious Disease Control and Prevention Act
      Recipient: Korea Disease Control and Prevention Agency or cities and provinces nationwide
      Personal Information to be Provided:
      - Name, address and telephone number (including mobile phone number)
      - The following information for identification of travel routes:
      A. Details of use of credit cards, debit cards and pre-paid cards under the Specialized Credit Financial Business Act
      B. Visual data collected through visual data processing devices under the Personal Information Protection Act

      Classification: Protection of persons at risk of suicide
      Applicable Law: Act on the Prevention of Suicide and the Creation of Culture of Respect for Life
      Recipient: Police Agency, Maritime Police, Fire station
      Personal Information to be Provided: Name, date of birth, address, telephone number, ID and email address of the person subject to emergency rescue

      Classification: Response to crisis situations such as financial difficulties
      Applicable Law:
      Emergency Aid and Support Act
      Recipient:
       National and local governments
      Personal Information to be Provided: Minimum information necessary to urgently discover persons eligible for livelihood support during times of financial hardship or other difficulties


      Classification: Processing of personal information of persons involved in crimes such as kidnapping and confinement
      Applicable Law: PIPA
      Recipient: Police Agency
      Personal Information to be Provided:
      Visual data such as CCTV footage

      Classification: Processing of personal information of persons involved in crimes such as kidnapping and confinement
      Applicable Law: Telecommunications Business Act
      Recipient: Investigative Agency
      Personal Information to be Provided:
      User’s name, address, telephone number, ID, date of subscription or termination
    1. The Company delegates the processing of personal information as follows for the effective management of tasks related to personal information:

      Service Provider: Deutsche Post AG
      Description of Delegated Serivce: Overseas delivery

      Service Provider: Modusign
      Description of Delegated Serivce: Execution, preservation and management of electronic contracts

      Service Provider: MIDAS IN
      Description of Delegated Serivce: Recruitment related service (operation of recruitment websites, storage and management of job applicants’ information, etc.)

      Service Provider: BS IT
      Description of Delegated Serivce: IT support (hard disk drive restoration, etc.)

      Service Provider: TeamWave
      Description of Delegated Serivce: IT support (DLP system operation)

      Service Provider:
       BizTalk, i-Heart, Samjung Data Service, Hanjin Information Systems Telecommunication, Kakao
      Description of Delegated Serivce: 
      Sending of text messages, KakaoTalk messages

      Service Provider: 
      SK Telink
      Description of Delegated Serivce: 
      Sending of text messages abroad

      Service Provider: 
      DadaGlobal (Subcontracting to post offices)
      Description of Delegated Serivce: 
      Domestic transportation

      Service Provider: 
      GS Networks (GS25), BGF Networks (CU)
      Description of Delegated Serivce: 
      Provision of guidance and delivery of passwords to customers using unmanned delivery boxes at convenience stores

      Service Provider: 
      Gogovan, OCL, Kyoungdong Express, AnyQuick Logistics, Hana Fine Logistics, Ilyang Logis, Mirae Total Logistics, Dongbang, QuickQuick
      Description of Delegated Serivce: 
      Delivery (with delivery vans)

      Service Provider: 
      Korean Air
      Description of Delegated Serivce: 
      Air transportation

      Service Provider:
       Unseo Customs Broker Office, AONE, ACE
      Description of Delegated Serivce: 
      Import and export clearance

      Service Provider: 
      Aeris, Jupiter Express
      Description of Delegated Serivce: 
      WMX related services

      Service Provider: 
      Crane Communications
      Description of Delegated Serivce: 
      Operation and management of social media accounts and hosting of events (delivering prizes to event winners, etc.)

      Service Provider: 
      Purple I&C
      Description of Delegated Serivce: 
      Delivery of prizes to winners of online events

      Service Provider: 
      ADsharp Corp.
      Description of Delegated Serivce: Delivery of calendars and diaries

      Service Provider: 
      NHN KCP
      Description of Delegated Serivce: 
      MYBILL PG and ADC

      Service Provider: KCNET, KTNET
      Description of Delegated Serivce: 
      Intermediary services for submission of import/export cargo manifests (submission of cargo manifests to the customs office)

      Service Provider: 
      NICE AMC
      Description of Delegated Serivce: Debt collection

      Service ProviderUniport
      Description of Delegated Serivce: Loading and unloading at Incheon International Airport


      The Company will subcontract the processing of personal information to outside service providers as follows through the head office (DP DHL Group); if there is any change in the subcontracted service providers or subcontracted services, the Company will disclose such change through this Privacy Policy:

      Subcontracted Service Provider: Deutsche Post AG Affiliates (The list of affiliates is available here.)
      Description of Subcontracted Services: Overseas delivery

      Subcontracted Service Provider: DHL Information Services (Asia-Pacific) Sdn Bhd
      Description of Subcontracted Services: Data processing and storage

      Subcontracted Service Provider: DHL Asia Pacific Shared Services Sdn Bhd
      Description of Subcontracted Services: Accounting services (accounting, collection of customer fares, etc.) Registration, management and maintenance of partners

      Subcontracted Service Provider: Taleo
      Description of Subcontracted Services: Recruitment services (operation of recruitment websites, storage and management of job applicants’ information, etc.)

      Subcontracted Service Provider: SHL
      Description of Subcontracted Services: Online personality and aptitude testing of job applicants

      Subcontracted Service Provider: Sonru
      Description of Subcontracted Services: Provision of video interview program services for job applicants

      Subcontracted Service Provider: Ingenico
      Description of Subcontracted Services: Provision of credit card payment services

      Subcontracted Service Provider: ION, DotDigital, Marketo
      Description of Subcontracted Services: Sending of emails and text messages, hosting of event websites and provision of internet platform services

      Subcontracted Service Provider: Survey Monkey, Usabilla
      Description of Subcontracted Services: Conducting of surveys including customer satisfaction surveys and collection of website users’ opinions


      In addition, the following (subcontracted) service providers of the above delegated (subcontracted) services for personal information processing are located outside of Korea:

      (Subcontracted) Service Provider (Country and Contact Information): Deutsche Post AG and affiliates (The list of affiliates, countries and contact information are available here.)
      Date, Time and Method of Transfer: Transfer of personal information through the telecommunications network immediately upon collection
      Transferred Items: Name, company, country/region, address, email address, contact information (mobile phone number, office number, fax number)
      Description of Delegated Services: Overseas delivery
      (Subcontracted) Service Provider's Period of Retention and Use: Until the processing of delegated services is completed or the delegation relationship is terminated

      (Subcontracted) Service Provider (Country and Contact Information): DDHL Information Services (Asia-Pacific) Sdn Bhd, (Malaysia,+60383158000)
      Date, Time and Method of Transfer: Same as above
      Transferred Items: Same as above
      Description of Delegated Services: Data processing and storage
      (Subcontracted) Service Provider's Period of Retention and Use: Same as above

      (Subcontracted) Service Provider (Country and Contact Information): Survey Monkey, Usabilla (USA, +16505438400)
      Date, Time and Method of Transfer: Same as above
      Transferred Items: Email address
      Description of Delegated Services: Collection of website users’ opinions and conducting of surveys including customer satisfaction surveys
      (Subcontracted) Service Provider's Period of Retention and Use: Same as above

      (Subcontracted) Service Provider (Country and Contact Information): Ingenico (France, +33 (0)1 34 34 95 95)
      Date, Time and Method of Transfer: Same as above
      Transferred Items: Credit card information
      Description of Delegated Services: Provision of credit card payment services
      (Subcontracted) Service Provider's Period of Retention and Use: Same as above

      (Subcontracted) Service Provider (Country and Contact Information): ION (UK, +44 20 7398 0200) DotDigital (UK, +44 (0)20 3953 3072)
      Date, Time and Method of Transfer: Same as above
      Transferred Items: Name, email address, address, contact information (mobile phone number, office number)
      (Subcontracted) Service Provider's Purpose of Use: Hosting of event websites  and provision of internet platform services
      (Subcontracted) Service Provider's Period of Retention and Use: Same as above

      (Subcontracted) Service Provider (Country and Contact Information): Marketo (USA, + 18006854193)
      Date, Time and Method of Transfer: Same as above
      Transferred Items: Name, email, contact information (mobile phone number)
      Description of Delegated Services: Sending of emails and text messages, hosting of event websites and provision of internet platform services
      (Subcontracted) Service Provider's Period of Retention and Use: Same as above

    2. When entering into a personal information delegation agreement, the Company will separately set forth matters related to the delegation, including, but not limited to, prohibition of personal information processing for purposes other than the performance of the delegated services, technical and administrative protection measures, management and supervision of the service provider, compensation for damages and subcontracting as set forth in the agreement or other relevant documents, in accordance with the PIPA and the Company will supervise whether the service provider processes personal information in a safe manner.
    3. If there is any change in the details of the delegated services or the service provider, the Company will immediately notify such change through this Privacy Policy.
    1. The Data Subjects and their legal representatives may exercise the following rights related to personal information protection in their own names or in the name of children under the age of 14:
      (1) Request for access to personal information;
      (2) Request for correction of errors in personal information, etc. (if any);
      (3) Request for deletion of personal information;
      (4) Request for suspension of personal information processing; and
      (5) Withdrawal of consent regarding personal information.
    2. The rights set forth in Paragraph 1 above may be exercised in writing or via the internet website, telephone, email address, fax, etc., and the Company will immediately take necessary measures such as verification of the identity of the relevant Data Subject as set forth in applicable laws and regulations including the PIPA.
    3. If a Data Subject or his/her legal representative requests correction or deletion of any error in personal information related to him/her or a child under the age of 14, the Company will not use or transfer such personal information until the request is completed and will correct the unlawful use or provision of personal information immediately upon discovery of such discrepancy in personal information.
    4. The rights set forth in Paragraph 1 above may be exercised through a legal representative (attorney-in-fact, agent, etc.), and in this case, a power of attorney in Annex Form No. 11 of the Notification on the Method of Processing Personal Information shall be submitted to the Company.
    5. All Data Subjects shall not infringe upon their own or third parties’ personal information and privacy processed by the Company in violation of applicable laws and regulations including the PIPA or the Network Act.
    1. Unless the Company is required to retain personal information by laws and regulations, the Company will, in principle, destroy personal information without delay when personal information becomes unnecessary, such as when the purpose of processing personal information has been achieved.
    2. If the Company is required by laws and regulations to retain personal information even after the expiration of the applicable retention period or achievement of the purpose of processing personal information, the Company will store and manage such personal information separately from other personal information.
    3. The Company will delete electronic files containing personal information in a way that makes such personal information irrecoverable and will shred or incinerate and safely dispose printouts containing personal information.
  • The Company will take technical, administrative and physical measures necessary to ensure security, including the following measures, in accordance with the PIPA:

    1. Administrative measures: implementation and operation of an internal management plan for personal information, minimization of employees who process personal information, training of such employees, etc.;
    2. Technical measures: security measures using technologies, such as encryption of personal information, installation of security devices, preventive measures against forgery and alteration of access records, preventive measures against computer viruses by installing and operating vaccine programs, etc.; and
    3. Physical measures: restriction and control of access to the computer room, data storage room, etc.
  • The Company may use or provide personal information to the extent that is reasonably related to the original purpose of collection by considering whether there is any disadvantage to the Data Subjects, whether necessary measures to ensure security, such as encryption have been taken, etc. in accordance with the PIPA.

    The specific considerations are as follows, and the Company will carefully determine whether to use and provide personal information by comprehensively taking into account applicable laws and regulations including the PIPA, purpose of use and provision of personal information, methods of using and providing personal information, items of personal information to be used and provided, details of consent given by the Data Subjects or matters notified or disclosed to the Data Subjects, if any, impact of use and provision on the Data Subjects and measures taken to protect relevant information:

    • Whether the use or provision of personal information is related to the original purpose of collection;
    • Whether the additional use or provision of personal information is foreseeable in light of the circumstances in which personal information is collected or practices of processing personal information;
    • Whether the interests of the Data Subjects are unduly infringed; and
    • Whether necessary measures have been taken to ensure safety, such as pseudonymization or encryption.
    1. The Company uses “cookies” to store and load user information to provide optimized information to website users by collecting and analyzing the types of visits to and use of its website and the number of users.  These cookies are “session cookies” that are stored only for the time users visit our website and are automatically deleted when users’ browser is closed.
    2. The Company also applies the following technologies to store information about visitors who repeatedly access one of the Company’s internet pages:  These technologies can be deactivated in the privacy settings center on the Company's website, but this may affect users’ experience of the website and the services provided by the Company.

      - Performance Technology: This technology is used to collect information about how the Company's website is used, such as the internet browser and operating system used, the domain name of the website that accessed the Company's site, the number of visits, the average time spent on the site, and the page viewed.

      - Functional Technology: This website provides more personalized functions by remembering user choices.  For example, when using a trackable application, this technology allows users to remember and store the last tracking number they have entered.  The information collected through this technology can be processed anonymously, and other websites cannot track users’ search activity.

      - Analytics Information Technology: The Company uses analytics information technology to improve the quality of the website and content and to ensure that partners' inserted services work properly.
    3. Users of the website may choose whether or not to install cookies, and accordingly, users may change their options in the web browser to choose whether to allow the saving of all cookies, to confirm the same each time cookies are saved or to refuse the saving of all cookies.
  • Pursuant to the PIPA, the Company has appointed the following chief privacy officer (the “Chief Privacy Officer”) and working-level personnel to protect personal information and handle complaints related to personal information:

    1. Chief Privacy Officer
      Name: Bong-Jo Kim
      Department: IT Department (Information System Division), Head
      Contact information: KR-EXP-Privacy@dhl.com
    2. Department in charge of personal information protection
      Department: IT Department (Information System Division)
      Telephone: 02-710-8368
      Contact information: KR-EXP-Privacy@dhl.com
  • The Company installs and operates visual information processing devices (“CCTVs”) as follows:

    1. Grounds and purposes of installing CCTVs: to ensure the safety of the Company’s equipment (safety of facilities), to prevent fire, to prevent crime, etc.
    2. Number of CCTVs installed, area of installation and scope of recording: The number of CCTVs installed is 1,147, CCTVs are installed inside and outside major facilities operated and managed by the Company, including lobby, entrance and emergency exit, and all areas of the major facilities are recorded.
    3. Responsible manager, department in charge and person with the right to access visual information: The Company has the following responsible manager to protect visual information and handle complaints related to personal visual information:

      Classification: Responsible Manager
      Name: Manager of each service center
      Title: Head of Center
      Department: Business Affairs Department
      Contact Information: Main number of each service center

      Classification: Person with access rights
      Name: Manager of each service center
      Title: Head of Center
      Department: Business Affairs Department
      Contact Information: Main number of each service center
    4. Recording time, retention period, place for storage and method of processing visual information:

      - Recording time: 24 hours
      - Retention period: 30 days (30 days for CCTVs installed at sales service branches) & 90 days (Incheon International Airport Gateway * in accordance with relevant airport laws and regulations)
      - Place for storage: The recorded visual information is stored in a separate place with a lock located at each facility operated and managed by the Company.
      - Method of processing: The Company records and manages matters concerning the use of personal visual information for other purposes, provision to a third party, destruction, requests for access, etc. and permanently deletes (shreds or incinerates in the case of printouts) personal visual information in an irrecoverable manner upon expiration of the retention period.
    5. Method of verifying visual information and place of verification: You may verify visual information by requesting the person responsible for the maintenance and repair of each facility, and such information may be verified at a separate place of each facility with a lock. (If a customer or a third party who is not the Company’s responsible manager or employee requests access to visual information, such visual information may be provided and verified after obtaining final approval from the Chief Privacy Officer.)
    6. Measures taken upon the Data Subject’s request for access to visual information, etc.: If you wish to access, confirm the existence of or delete visual information, you may request the Company at any time; provided, however, that the foregoing shall be limited to footages that record your visual information and any visual information that is clearly necessary for the urgent need to protect the life, body or property of the Data Subject. If you request access to, confirmation of the existence or deletion of visual information, the Company will take necessary measures without delay.

      However, the Company may refuse to take such measures despite the request for access to, confirmation of the existence or deletion of visual information in any of the following events, in which case the Company will notify the reason for refusal in writing, etc. within 10 days:

      - If visual information has been destroyed due to the lapse of the retention period;
      - If access to or disclosure of visual information is likely to infringe upon privacy of others;
      - If the request causes serious disruption to criminal investigation, maintenance of public prosecution, proceeding with a trial, etc.; or
      - If there is any other justifiable reason to refuse your request for access, etc.
    7. Technical, administrative and physical measures to protect visual information: The Company is taking security measures required by the PIPA and other applicable laws and regulations, including the following:

      Technical measures
      - The Company is applying technical controls to prevent access by unauthorized users.
      - The Company is carrying out monitoring to prevent accidents that may occur inside and outside the Company.

      Administrative measures
      - The Company strictly prohibits arbitrary access, reproduction, removal, etc. of information recorded and collected by CCTVs.
      - The Company complies with administrative protection measures under this Privacy Policy.

      Physical measures
      - CCTV recording equipment is kept separately in a designated restricted area, and access to such area is strictly controlled.
  • In order to seek remedies for personal information infringement, the Data Subjects may apply for consultation with the Personal Information Dispute Mediation Committee, the Personal Information Infringement Reporting Center under the Korea Internet & Security Agency, etc.

    Please contact the following institutions for other reports and consultations on personal information infringement:

    1. Personal Information Dispute Mediation Committee: 118 (no area code required)
    2. Information Protection Mark Certification Committee: +82-2-580-0533~4
    3. Cyber Crime Investigation Team of the Supreme Prosecutors’ Office: +82-2-3480-3573
    4. Cyber Terror Response Center of the National Police Agency: +82-2-1566-0112
  • This Privacy Policy shall take effect from the effective date. If any addition, deletion or correction is made to this Privacy Policy pursuant to applicable laws and regulations and the guidelines on the provisions of this Privacy Policy, the Company will disclose such amendment in the manner prescribed by applicable laws and regulations.

    ※ History of establishment and amendment of this Privacy Policy

    No. 1 - December 29, 2017 - Established the Company's Privacy Policy
    No. 2 - December 15, 2018 - Reflected changes in service providers
    No. 3 - September 1, 2021 - Added Article 12 and reflected changes in service providers pursuant to the amended PIPA
    No. 4 - October 6, 2021 - Reflected changes in service providers
    No. 5 - May 31, 2023 - Amended to reflect the recent guidelines on Privacy Policy

Divisional Privacy Notices or Terms & Conditions

DHL Korea Ltd. (www.dhl.co.kr, www.logistics.dhl/krundefined) implements and operates this Personal Information Management / Handling Policy pursuant to Article 30 of the Personal Information Protection Act in order to protect personal information and the rights of the subjects of relevant personal information and smoothly handle and manage complaints raised by the Information Subjects.


Changes to Privacy Notice

DHL reserves the right to change its Privacy Notice at any time with or without prior notice. Please check back frequently to be informed of any changes. By using DHL's websites you agree to this Privacy Notice.

This statement was last updated on:

03/06/2023