Privacy Policy

1.Rules for the Personal Information Management
  1. (1) When personal information database is built up, a departmental management representative ("Management Representative") specific to each database shall be appointed.
  2. (2) The Management Representative shall lays down, if necessary, the "Standards for Personal Information Protection" in writing ("Standards") as detailed rules for the implementation or abolishment of the matters set forth in the "Rules for Personal Information Management" ("Rules") related to the personal information to be handled by his/her department. When the Standards are laid down, the Management Representative shall notify Personnel Dept. and General Affairs Dept. immediately about the laying down of the Standards.
  3. (3) The Management Representative shall be responsible for carefully managing the Rules and the Standards to be implemented and practiced properly to prevent the personal information from being disclosed to the outside, misused or altered.
2.Utilization of the Personal Information
  1. (1) When handling the personal information, the utilization purpose shall be defined in writing beforehand. Such utilization purpose shall be to such an extent that is necessary for our relevant business and operation.
  2. (2) The utilization of the personal information shall be only to such an extent that is approved by the subject of the personal information and necessary for performing our relevant business and operation.
  3. (3) When the subject of the personal information is notified about any of the following items in writing or by an alternative method, the personal information shall not be utilized beyond the extent of the utilization approved by the subject of the personal information unless the approval from the subject of the personal information is obtained:
    1. 1) The trade name of our company, the name, position and contact of the Management Representative (information desk if the Management Representative is not appointed);
    2. 2) The utilization purpose of the personal information;
    3. 3) The purpose and the receiver when the personal information is to be provided to a third person/party; or
    4. 4) The existence of the following rights related to the personal information, and the specific method of exerting the relevant rights:
      1. A right to request for the notification about the utilization purpose of the relevant information
      2. A right to request for the disclosure of the relevant information
      3. A right to request for the correction, addition or deletion of the relevant personal information if the personal information is not true
      4. A right to request for the utilization cease or deletion of the relevant personal information
3.Provision of the Personal Information to a Third Person/Party
  1. (1) The personal information shall not be provided to a third person/party (including our subsidiaries and affiliates).
  2. (2) Notwithstanding to the provision of the preceding clause (1), when it is necessary for us to entrust a part or the whole of the relevant business or operation to a third person/party in order to perform our business and operation, the personal information may be provided to such third person/party (entrustee) that satisfies the below-listed requirements to such an extent of utilization purpose that is approved in advance by the subject of the personal information:
    1. 1) The entrustee shall be engaged in commonly accepted quality business activities.
    2. 2) The entrustee has such regulations for the protecting personal information that are equivalent or superior to the Rules.
    3. 3) The entrustee has concluded an agreement with our company for protecting the personal information and expected to honor such agreement.
  3. (3) The specific procedures for providing the personal information shall be set forth separately from the Standards by the Management Representative. When the personal information handling operation is entrusted to a third person/party, the approval from the Management representative shall be obtained beforehand.
  4. (4) When the personal information handling operation is entrusted to a third person/party under Article 3 (2) hereof, the third person/party to whom the personal information handling operation is entrusted shall be inspected whether its obligations can be fulfilled or not and guided to the proper fulfillment from time to time.
4.Management of the Personal Information
  1. (1) An effort shall be made to prevent illegal access to the personal information and the leakage, loss and damage of the personal information and to promote the safety management of the personal information.
  2. (2) The Management Representative shall set forth, if necessary, the proper measures necessary for the safety management of the personal information in accordance with the Rules, and shall compel all our officers and employees who handle the personal information to observe such measures.

pagetop