Treatment of Personal Information
The Company will treat the personal information in providing IT logistics services and other services that the Company provides as its business in accordance with this Treatment of Personal Information.
1.Purposes of Use of Personal Information
The Company will use the personal information collected from our customers for the purposes of the provision of IT logistics services and other services operated by the Company; advertisements, promotion, and marketing; improvement, research, and development of services; appropriate responses to inquiries; and the prevention of and countermeasures for any wrongful acts.
The detailed purposes of use of personal information shall be as follows (including those related to them):
- 1. Provision of IT logistics services
- ・To provide functionality of the Company’s system in relation to the relevant orders
- ・To offer estimations, manage orders, and provide products and/or services related to the relevant orders.
- 2. Provision of services operated by the Company (including IT logistics services)
- ・To provide relevant services
- ・To deliver products and/or provide services, content, incentives, and/or information in relation to the relevant services
- 3. Advertisements, promotion, and marketing
- To display and/or send to customers advertising content, such as direct mails or email newsletters, relating to products, services, campaigns, or seminars of the Company or other companies with the customers’consent, or within the scope or via methods otherwise permitted under applicable laws.
- 4. Improvement, research, and development of services
- To improve existing services and conduct research and development of new services by the Company
- 5. Appropriate responses to inquiries
- To respond appropriately to customers inquiries and/or complaints related to Company’s services and advertisements
- 6. Prevention of and countermeasures to wrongful acts
- To prevent, investigate, and identify fraud, cyberattacks, and other illegal or potentially illegal activities in order to protect the Company and the legal rights of the Company and/or any third party
For the purposes of use from 1 to 6 above, the Company may use the business card information exchanged with customers or client companies.
When the Company intends to use any personal information for the purposes other than above, the Company will identify the purposes of use thereof and obtain the relevant customer’s prior consent each time.
The Company will not change any purpose of use beyond the scope that is reasonably deemed to have considerable relation with the existing purpose of use.
2.Shared Use
- The Company may share any personal data as follows:
- a. The parties who share personal information with the Company
- SoftBank Corp.
- Group companies of the Company
- b. Personal data to be shared
- Name, e-mail address, basic information of enterprise (address, telephone number, facsimile number, etc.), and all other personal information acquired through the services operated by Company (including IT logistics services)
- c. Purposes of shared use
- Marketing research and analysis, and other purposes stated in 1 “Purposes of Use of Personal Information” above
- d. Protection Manager of shared personal information
- Chief Information Security Officer of the Company
3.Provision to Third Parties
- (1)The Company may provide a customer’s personal data to a supplier, client, sales partner, or other business partners (hereinafter “Business Partner”) within the scope required for the purposes of customer support and of giving notices, planning, development, and provision of products, services, campaigns, events, seminars, and/or questionnaires by Business Partners.
- (2)The Company may provide a customer’s personal data to a partner company within the scope required for the purposes of planning, development, and provision of services partnered with such partner company.
- (3)The Company may provide a customer’s personal data to an ad platform provider within the scope required for the purposes of giving notices to customers of and/or analysis of products, services, campaigns, events, seminars, and/or questionnaires of the Company or other companies.
- (4)The Company may notify a third party, police, or other relevant agency of any information provided by an individual when the Company considers it causes disadvantage to a third party. In the event the Company is requested to disclose the information provided by the said individual by a court, public prosecutor’s office, police, bar association, consumer consultation center, or other agencies having the equivalent right, the Company may disclose the information in compliance with such request or provide the information in order to protect the rights and properties of the Company.
4. Measures Implemented for Security Control
- The Company has implemented the following measures for security management of personal data.
- (1)Establishment of basic policies
The Company has established the Action Guide for Protection of Personal Information and the Information Security Policy as the basic policies to secure appropriate treatment of personal data. The Company will continuously review and improve these basic policies and each of the following actions:
- (2) Preparation of the regulations pertaining to treatment of personal data
Based on the basic policies, the Company has prepared the internal regulations that stipulates definitive measures pertaining to treatment and management systems for the collection, use, processing, storage, provision, deletion, and correction of personal data and has made them clear inside the Company.
- (3)Organizational security control measures
The Company has clearly defined a person responsible for treatment of personal data and the roles, responsibilities, and authorities. The Company is also continuously and systematically implementing reviews, supervision and audits of management, and external audits pertaining to treatment status of personal data.
- (4)Human security control measures
The Company has prepared learning materials pertaining to the protection of personal information, has distributed the same to all employees, and is executing training at least once a year for all employees who treat personal information. In concluding outsourcing contracts, the Company is sufficiently checking the eligibility of contractors, and is including in such contracts the terms and conditions necessary for ensuring the security control systems similar to that of the Company. The Company is also working for appropriate supervision, including monitoring, review of contractors, and enhancement of outsourcing contracts.
- (5)Physical and technical security control measures
The Company is implementing the necessary and appropriate measures to control the safety of personal data, including work in a security area, control and restriction of access to personal data, restriction of taking out of personal data, and measures to prevent wrong access from the outside.
- (6)Understanding of external environment
When the Company uses, stores, or provides personal data in a foreign country, the Company publishes or provides information in appropriate ways understanding the systems pertaining to the protection of personal information in the relevant foreign country.
5. Regarding Notification of Purpose of Use, Disclosure, Collection, and Suspension of Use of Personal Data
- (1)In the event that the Company is requested by a customer to notify the purposes of use of, or disclose, correct, or suspend the use of the personal data (hereinafter “Disclosure of Personal Information”) that the Company received from such customer, the Company will promptly respond to such request in accordance with the relevant laws and regulations. Provided, however, the Company may claim the charge within a reasonable extent taking the actual cost into account in responding to such request.
- (2)With regard to any inquiry concerning Disclosure of Personal Information, which the Company received from the customer and complaint about treatment of the said personal information, please present the same to the following contact point.
Personal Information Inquiries
Supplementary Provisions
– The Treatment of Personal Information is in force as of April 1, 2014.
– Revised as of April 1, 2015.
– Revised as of July 1, 2015.
– Revised as of May 1, 2017.
– Revised as of April 1, 2022.