Reference no: EM133298893
Case: As our business spans across so many countries around the world, we know the differences between these countries' laws, regulations and practices, and we analyze them while conducting our business in uncompromising legal and ethical ways. We also develop and implement global personal information security policies to respect the privacy of our customers and employees and protect their personal data. Notably, our relentless endeavors to systematically manage compliance and ethical risks are driven by the Samsung Global Code of Conduct.
(Samsung Global Code of Conduct) and Business Conduct Guidelines that guide all of our employees to take required actions and make judgments. Now, the company's compliance team - formerly under the umbrella of the Legal Department - reports directly to the CEO, and the Head of Compliance attends all board meetings to support important board decisions. In addition, we operate dedicated bodies in every division of the company and in international regional offices to manage compliance issues relevant to each division and region.
We publish our Global Code of Conduct ("Samsung") Business Principles to suppliers, customers, and other external stakeholders as well as our employees through our Ethics Department website, and provide a channel for reporting any breach of the ethical standards. In addition, the "Business Conduct Guidelines" "Employees" which are the ethical standards for our employees, translated and available in a total of 15 languages ??(including Korean) and found on our intranet. Relevant details are disseminated and shared among all our employees around the world through an online group audio/visual training delivered once or more annually.Separate Business Guidelines are also provided to our suppliers to establish transparent business practices.
Ethics and Compliance Department website
Compliance Management
The Compliance Management Program aims to establish a corporate culture based on compliance in order to reduce business risks that may arise due to price fixing or infringement of intellectual property rights and to assume stronger responsibility in the areas of human rights, health and safety, and the environment. The Compliance Program Management System (CPMS), an IT system developed to manage compliance-related risks, provides our region-specific policies and details of monitoring regional matters. The support desk is on standby and works to help employees submit inquiries to experts whenever they have work-related problems or when the directions are not enough for them to identify the legal violation. Our whistleblower system, which was developed within the Compliance Program Management System (CPMS) for our employees, operates in a manner that strictly guarantees whistleblower confidentiality.
Running custom units
Establishing a privacy office within the company's legal office under the direct leadership of the CEO
Appointment of attorneys responsible for privacy policy in the respective business divisions
Watching
Conduct regular/ad hoc monitoring through dedicated units or team
Follow-up Department
Identifying root causes of problems by performing process and outcome analyzes, making improvements, and avoiding the same problem happening again (eg introducing actual cases as part of training)
privacy policy
We have formally announced our global standard privacy policy and have developed relevant policies that reflect the regulatory conditions and local characteristics of each region. As a result of these endeavours, we provide our employees with a "Global Personal Information Handbook" and a "Management of Personal Data Processing Outsourcing Handbook" for use as administrative regulations. We manage our processes and systems in a way that integrates relevant policies into our daily business conduct and we continue to conduct company-wide reviews and training.
Running custom units
Establish a Global Privacy Office within the Corporate Legal Office under the direct leadership of the CEO Appointment of attorneys responsible for privacy policy in the respective business divisions
Enhanced review of privacy policy management/operating systems
Conduct regular reviews and make necessary improvements in our systems and services that work for the benefit of our customers and employees for their administrative, technical and physical protection system that governs the entire process of data collection, processing and transmission
Privacy Policy Training
Provide online or online privacy policy training that takes into account the functional characteristics of each department (planning, R&D, marketing, etc.) as well as basic training targeting all employees
Turn on Privacy Legal Management System (PLMS)
Enforce preventive measures through the use of a data privacy risk checklist developed with the aim of reviewing data privacy risks at every stage of products and services, from planning and development to operation and discontinuation with the review of this checklist by specialized lawyers
After reading the previous case study, answer the following questions:
Question 1. The majority of major international companies claim that they pursue social responsibility and ethical standards and set goals for them, but few of them actually implement these goals. How can Facebook deal with issues related to social responsibility and ethical standards?
Question 2. Develop a vision of the factors that aggravated and deteriorated the ethical situation in some international companies.