have become essential obligations for being a part of society,
and they are firmly established as one of the important
activities for the sustainability management of the company.
Incheon Total Energy strives for the sustainable growth and development
of both the company and society, endorsing values of human rights and
coexistence in all its business activities.
To achieve this, the company has established an ethical management system,
including ethical guidelines, ethical practice regulations, and self-compliance
rules, which serve as the basis for decision-making in business operations.
Furthermore, to promote ethical management practices, the company has
established a self-compliance office and conducts regular training to ensure
the stable implementation of these regulations.
Additionally, efforts are made to foster a corporate culture where all employees
and executives voluntarily participate in ethical management through various
ethical management education and activities.
- Article 1. Customer Satisfaction Management
Recognizing that customers are the foundation of the company's profits and growth, the strives to achieve customer satisfaction by providing the true value that customers desire.
- Article 2. Coexistence and Co-prosperity with Cooperating Companies
With transparent and fair transactions, the company seeks mutual growth through mutual trust and cooperation.
- Article 3. Respect for Employees and Executives and Adherence to Basic Ethics
The company and its employees and executives faithfully fulfill their obligations for mutual growth and development based on mutual trust and respect.
- Article 4. Protecting the Interests of Shareholders
The company protects the interests of shareholders by conducting efficient and transparent management activities that shareholders can trust and invest in.
- Article 5. Contribution to the Nation and Society
As corporate citizens, the company respects national policies and all laws, fulfilling our social responsibilities.
- Article 6. Environmental, Health, and Safety centric management
The company makes its best efforts for environmental protection and strives for accident-free workplaces.
and established a Compliance Office to systematize and ensure the efficient
execution of the company's compliance activities. All employees and executives
are actively participating in compliance activities together.
Through compliance activities, the company ensures that relevant laws, company policies,
standards, procedures, and work instructions are adhered to in the performance of all
company operations. In cases of ethical conflicts or conflicts of interest with the company
during the course of work, decisions and judgments are made based on ethical norms and
the company's ethical code of conduct.
Furthermore, in cases of ethical conflicts and conflicts of interest, they are reported
to the CEO immediately, and depending on the severity of the matter, they are reported
to the HR committee and the board of directors for appropriate handling.
-
Maintenance of System /
Training and Promotion-
Corporate Compliance Officer
The company establishes and operates an overall system for the maintenance, education, and dissemination of relevant regulations necessary for its compliance activities, as well as a monitoring and supervisory system. This is to ensure that compliance activities within each organization are systematic and efficient. When training is required in relation to compliance activities, the Compliance Office develops educational materials and conducts training sessions.
-
All employees and executives are required to complete the company's compliance training.
-
-
Monitoring and Supervision
-
Corporate Compliance Officer
In accordance with the delegation of authority by the CEO, the company can oversee its compliance activities and take necessary measures for prevention and intervention in case of violations.
All employees and executives may be required to submit a compliance pledge statement at least once a year. To effectively monitor and supervise violations of relevant laws and the compliance system, the company must establish and operate an internal whistleblower system.
If a company employee or executive’s actions are found to be in violation of relevant laws or the company's policies, regulations, procedures, and guidelines, they must report it to the CEO. When necessary, the Human Resource committee may be involved to consider disciplinary actions against the employee or executive and recommend appropriate measures for the respective department. Additionally, every effort should be made to prevent the recurrence of similar violations.
When necessary, the company may seek assistance from external professionals such as certified accountants, lawyers, etc., to carry out tasks related to its compliance activities
-
-
Whistle-blower System
-
Employees and Executives
All related to actual or potential violations of relevant laws, company policies, regulations, procedures, and guidelines have to be reported immediately to the Corporate Compliance Officer or the Compliance Office.
-
Corporate Compliance Office
Upon receiving a report, the severity and veracity of the reported concerns will be assessed. In cases of significant importance, a direct investigation will be conducted, while minor issues will be reported to the respective department head for internal handling.
-
Corporate Compliance Office
Upon receiving the investigation results from the department head or the Compliance Office, they must promptly report it to the CEO and take necessary actions regarding the alleged violations.
If the reporting results in significant contributions to the company, such as prevention of illegal activities, cost reduction, or risk mitigation, the whistleblower may suggest an appropriate reward to the CEO. -
Employees and executives should not face any personal or economic disadvantages as a result of their reporting, and the identity and related information of the whistleblower must be protected by conscientious management on the part of the recipient department head, the Compliance Office, and the Compliance Officer to prevent any disclosure.
-
-
Handling of Violations
-
Corporate Compliance Officer
Concerning individuals or departments found in violation of relevant laws, company policies, regulations, procedures, and guidelines, corrective actions and system improvements may be required.
In the case of individuals found in violation of relevant laws, company policies, regulations, procedures, and guidelines, the Human Resource committee may be requested to impose sanctions -
Individuals and departments that have received requests for correction and system improvement must prepare a plan for addressing the corrective and improvement requirements within one month from the date of the request and report it to the Corporate Compliance Officer.
-
-
Reporting System
-
Corporate Compliance Officer
All related to actual or potential violations of relevant laws, company policies, regulations, procedures, and guidelines have to be reported immediately to the Corporate Compliance Officer or the Compliance Office.
-
Head of Department
Upon receiving a report, the severity and veracity of the reported concerns will be assessed. In cases of significant importance, a direct investigation will be conducted, while minor issues will be reported to the respective department head for internal handling.
-
The cooperating companies are also encouraged to implement an Ethical Pledge, ensuring that they understand and adhere to the ethical norms and practice guidelines.
The company conducts monthly training sessions on topics such as integrity and anti-corruption, harassment prevention, workplace bullying prevention, and adherence to basic ethics.
Especially in 2021, having been designated as a public-related organization, the company has established an education plan to comply with mandatory anti-corruption training. The company is conducting training for all employees and executives on anti-corruption-related regulations and policies, including the Conflict of Interest Prevention Act, the Anti-Graft Act, the Code of Conduct, the Whistleblower Protection Act, and the Act on the Recovery of Public Funds.
In 2021, a total of 81 employees and executives completed mandatory anti-corruption training through both online and in-person education.
- Article 1. Customer Satisfaction Management Article 1. Customer Satisfaction Management
-
Recognizing that customers are the foundation of the company's profits and growth, the strives to achieve customer satisfaction by providing the true value that customers desire.
- 1. Always respect customer opinions and consider them as the foremost criteria in the company's business activities.
- 2. Provide the best products and services that meet customer demands and expectations.
- 3. Highly value customer information and interests, and fulfill commitments to customers.
- Article 2. Coexistence and Collaboration with Cooperating Companies Article 2. Coexistence and Collaboration with Cooperating Companies
-
Pursue mutual development through transparent and fair transactions, building mutual trust and cooperation.
- 1. Provide cooperating companies with equal trading opportunities and ensure reasonable terms, fostering a collaborative relationship for mutual growth.
- 2. Engage in fair transactions with partner companies on an equal footing and refrain from any unfair practices through the use of a dominant position in any form.
- Article 3. Respect for Employees and Executives and Adherence to Basic Ethics Article 3. Respect for Employees and Executives and Adherence to Basic Ethics
-
The company and its employees and executives faithfully fulfill their obligations for mutual growth and development, based on mutual trust and respect.
- 1. The company respects each individual employee or executive as an independent entity and strives to provide fair treatment based on their abilities and achievements, allowing for self-realization.
- 2. Employees and executives respect each other, maintain a clear distinction between work and personal matters, and perform their duties fairly and transparently, thereby fulfilling their given responsibilities.
- Article 4. Protection of Shareholder Interests Article 4. Protection of Shareholder Interests
-
Protect the interests of shareholders through efficient and transparent business operations that inspire trust and investment.
- 1. Protect shareholders' investment returns diligently by achieving sound profits through efficient management.
- 2. Respect shareholders' rights to know about the company and provide necessary information truthfully and in a timely manner.
- Article 5. Contribution to the Nation and Society Article 5. Contribution to the Nation and Society
-
Respect national policies and all regulations, fulfilling our social responsibilities, as a corporate citizen." It's a good rephrasing of the original statement.
- 1. The company contributes to the nation's development through continuous job creation and diligent tax payments.
- 2. Taking a leading role in creating a future where everyone is happy, the company strives for ongoing development in collaboration with the local community.
- 3. It adheres to all relevant regulations both domestically and internationally, including those related to free-market competition, political contributions, lobbying, economic benefits to public officials, and international trade controls related to exports and imports, as well as various laws and treaties related to anti-corruption and business conduct, while respecting commercial customs and cultures.
- 4. In all our business activities, the company upholds the values of freedom and equality, based on human dignity, and respects and supports universal human rights and the values of coexistence among humanity.
- Article 6. Management Emphasizing Environment, Health, and Safety Article 6. Management Emphasizing Environment, Health, and Safety
-
The company makes every effort for environmental protection and strive for accident-free workplaces.
- 1. The company competes to make the best efforts in environmental pollution prevention to fulfill our responsibility to the environment.
- 2. The company pursues a safe and pleasant accident-free workplace by prioritizing the health and safety of employees and executives and cooperating companies.
The content of the reports and the identity of the reporters are strictly kept confidential, and measures are in place to ensure that no disadvantages are imposed on the reporters.
In the event that a reporter does experience any disadvantages, appropriate actions are taken in accordance with the company's regulations.
- 1. Internal Stakeholders, External Stakeholders
- Reporting
- 2. GS에너지 윤리경영 제보라인 - email : ethics@gsenergy.co.kr, 02-2005-0980
- (2에서 3으로)Legal Advisory and Cooperation, (3에서 2로)Incident Handling Reporting (Frequent/Regular)
- 3. Corporate Compliance Office - [Handling], Case-by-Case Assessment: In-house handling or referral to the Management Committee, Reporting and Handling Content: Report to the CEO on a quarterly basis
- (2와 3 사이의 관계도) Receipt of Report and Notification to the Compliance Office and related affiliates
Accordingly, the company is strengthening the management system for personal information protection and information security to ensure security stability and enhance our business competitiveness. The company has established and is operating information security policies and strategies, and manages employees and executives involved in company operations to ensure compliance with information security policies.
-
Policy
When the retention period has expired, the purpose of processing
personal information has been achieved, or personal information
has become unnecessary, it is permanently destroyed electronically
in a manner that cannot be recovered or regenerated. -
Strategy
· The company does not collect personal information of external
stakeholders, apart from employees and executives' personal information.
· When the purpose of the operation is achieved, the company permanently
destroys it electronically through a secure agency.
Management Organization
and has appointed a Personal Information Protection Manager as the Managing General Manager to oversee the processing of personal information based on the Personal Information Protection Act.
The company has implemented the necessary technical, administrative, and physical measures to ensure security, including the establishment and implementation of internal management plans, access restrictions to personal information, and encryption of personal information.
- Personal Information Protection Officer : Managing General Manager
- Personal Information Protection Manager : Management Support Team Leader
- Personal Information Protection Officer : Personal Information Officer
- Personal Information Protection Handling Personnel : Personal Information Handling Personnel by Team
Management Infrastructure
1) U.T.M.(Unified Threat Management) :
A management system that utilizes various security tools, including firewalls
2) DR(Disaster Recovery) :
The process of restoring critical technical infrastructure to a specific organization in the event of a disaster
-
01
U.T.M1)
· 24-hour security monitoring
· Defense against cyberattacks
· Blocking of non-pre-registered IPs -
02
Web firewall
· Enhancing web server security
· Ensuring security against hacking attempts -
03
PC Filter
· Electronic document encryption
-
04
DB encryption
· Encryption of personal information databases
-
05
Electronic approval system
· Introduction of GS Energy
T-Office Groupware in 2016
· Prevention of electronic document forgery and more -
06
Data image backup
· Daily, weekly, and monthly image backups
· Operation of DR2) center
of its DB infrastructure through GS Energy's
'IT Shared Service' since 2021.
Through this solution, the company aims to establish a centralized data
management system to increase the value of data by integrating fragmented
documents by 2023.
Through this management system, the company is improving the convenience of
operational management by integrating and standardizing processes, thus enhancing operational efficiency.
- Infrastructure Integration : Public Cloud, Prompt Provision of Appropriate Scale IT Resources, Establishment of a Data Platform Based on Domain Knowledge1)
- Centralization of Documents : Mandatory→Autonomy and Accountability, Enhancement of Centralized Data Value, Centralization of both Documents and Work Records
1) Domain Knowledge: Knowledge related to the industry, key services, and products to which the company belongs
- File Creation
- 1. Identification of Documents Subject to Employees and Executives Autonomy and Accountability
- 2. Document Grading per Information Asset Management Guidelines
- 3. Classification of General Documents/Confidential Documents Grade
- PC Storage
- 4. MS Office Documents Labeling
- 5. Default Setting for All Documents as "Public"
- 6. Classification as "Confidential" When Deemed Necessary
- External Export
- 7. Activity Records Monitoring
- 8. Security personnel collect and monitor audit logs according to the principle of accountability in case of incidents
- 9. Strengthening liability regulations in case of incidents caused by external export
- Assetization
- 10. Identification of Uploaded Files, Including Completeness
- 11. Determining the Level of Sharing Within Teams, Within the Company, and by Individuals
- 12. Uploading to Internal or External Document Repositories