To systematically promote the protection of personal information, the Company has established necessary systems
and rules and is conducting management activities, as follows.
1.1.) Compliance with Laws and Regulations
The Company is aware of and fulfills its legal and social responsibilities as a company handling personal
information. The Company fully informs all persons involved in its business of the Act on the Protection of
Personal Information (hereinafter referred to as the “Personal Information Protection Act”) and other laws and
regulations so that those laws, etc. will be complied with in all business activities of the Company.
1.2.) Organizational Structure
The Company appoints managers for the handling of personal information on a company-wide basis and on a business
unit basis. The Company also appoints persons respectively in charge of education and enlightenment about personal
information, response to customer inquiries, auditing, etc. and has such persons perform necessary duties.
1.3.) Ensuring Security
The Company endeavors to ensure security in order to create an environment free of anxiety with respect to
personal information. The Company takes necessary measures by developing systems and rules in order to address the
risk of unauthorized access to personal information and of loss, destruction, falsification, leakage, etc. of
customers’ personal information.
1.4.) Implementation of Education and Enlightenment
The Company educates and enlightens all persons involved in its business to raise individual awareness of personal
information protection. Through such activities, the Company ensures the proper handling of personal information
in all of its businesses.
1.5.) Implementation of Audits
The Company conducts internal audits as part of its personal information protection activities. Through such
activities, the Company periodically reviews and improves the management and operation for personal information
protection.
To prevent any personal information from being handled against the will of the person identifiable by the
information, the Company handles personal information in accordance with the following principles.
2.1.) Specification of Purpose of Use
The Company clarifies the purposes of use of personal information held or handled by the Company as set forth
Schedule 1
2.2.) Acquisition of Personal Information
When obtaining any personal information, the Company uses an appropriate method, not deception or other wrongful
means, and provides proper notification of and/or publicizes the purposes of use.
Particularly when obtaining any personal information in writing, on a web page, etc., the Company clearly
indicates the purposes of use in the writing, on the web page, etc.
However, this does not apply if the Company does not have these obligations under the Personal Information
Protection Act and other laws and regulations.
2.3.) Use of Personal Information
1. The Company uses the personal information obtained while its services are used to achieve the purposes of use
set forth in
Schedule 1, and also handles user
information containing personal information not set forth in
Schedule 1properly within the scope of the following
purposes and does not use any such information beyond the scope of the purposes of use without the relevant user’s
consent.
a Smooth provision, maintenance or improvement of products/services of the Company (including co-users; hereafter
in this Article 2, the same applies)
b Calculation, billing, payment, remittance or other settlement processing of fees, rewards, etc.
c Identity verification or authentication service
d Implementation of a campaign, questionnaire, etc.
e Notice/announcement regarding services of the Company, important notice of change in terms/conditions/policy of
the Company, or suspension/discontinuation, etc. of services of the Company
f Helping the development, provision, maintenance and improvement of services of the Company, content provided by
the Company or advertisements
g Provision of technical support or response to user inquiries, etc.
h Development, provision or measurement of the effectiveness of advertisements for products or services of the
Company or a third party
i Marketing research, statistics or analysis
j Prevention or investigation of, or implementation of measures against, an illegal act, improper act, act in
breach of the Company’s terms of use, etc. or act that is likely to fall under any of the foregoing
k Other purposes prescribed in the respective services of the Company
2. The Company may change the purposes of use set forth in
Schedule 1or Paragraph 1 above to the extent
reasonably deemed to be substantially relevant to the purposes of use before the change, and if the Company makes
such change, it will give notice of or announce the change to users by the method separately prescribed by the
Company.
2.4.) Provision of Personal Information to Third Parties
The Company will not provide any personal information to a third party unless:
(1) the relevant user’s prior consent is separately obtained;
(2) such provision is done under a law or regulation;
(3) necessary measures are taken with respect to a user’s act that harms the interests of others or is contrary to
public order and morals or is otherwise in breach of the terms of use, etc. of the Company’s services when the
user performs or intends to perform such an act while using the Company’s services;
(4) it is difficult to obtain the relevant user’s consent in the case such provision is necessary to protect any
person’s life, body or property;
(5) it is difficult to obtain the relevant user’s consent in the case such provision is especially necessary to
improve public health or promote healthy development of children;
(6) in the case that the Company is required to provide cooperation in the performance of affairs prescribed by
law by a state agency or local government or a person entrusted thereby, the performance of the affairs is likely
to be affected by acquisition of the relevant user’s consent; or
(7) business including personal information of users is succeeded due to merger, company split, business transfer
or any other event.
Use and Provision of Personal Information in Connection with Prevention of Unauthorized Use, etc.
1. When a user requests settlement by a credit card,
the Company will take measures necessary for the detection and prevention of unauthorized use by a third party of
the credit card
whose information is entered or fraud by means of the credit card (hereinafter collectively referred to as “Fraud
Prevention”) in order to prevent crime and protect property.
2. Any user who has requested settlement by a credit card shall agree that the Company will use the information
set forth in
below obtained with respect to the user to the extent necessary for Fraud Prevention and will provide such
information to the third party set forth in
(2) below for the purpose of Fraud Prevention.
(1) Personal Information
(i) Information entered when registering as a member such as e-mail address
(ii) Means of payment (intent of paying by a credit card) and the number of the credit card designated as the means of payment
(iii) Automatically generated when users access the InternetInternet Protocol (IP) addresses, log information, and network information
(2) Third Party that Will Provide Personal Information
(i) Name of company: Akuru Inc.
(ii) Address: 14th Floor, Roppongi First Building, 1-9-9, Roppongi, Minato-ku, Tokyo
(iii) E-mail (contact):p-info@akuru-inc.com
(iv) For the handling by the third party of the provided personal information, please refer to its privacy policy at
https://akuru-inc.com/privacy/.
(i) Name of company: DG Financial Technology Inc.
(ii) Address: 5th Floor, Digital Gate Building, 3-5-7, Ebisuminami, Shibuya-ku, Tokyo
(iii) E-mail (contact):privacy@dgft.jp
(iv) For the handling by the third party of the provided personal information, please refer to its privacy policy at
https://www.dgft.jp/company/privacy/.
3. Each user shall agree that the Company will obtain from the third party prescribed in Paragraph 2 (2) above
his/her personal information
including the result of the fraud check with respect to the credit card provided by the user to the extent
necessary for Fraud Prevention and will use his/her personal information
obtained by the Company by checking with his/her personal information held by the Company to the extent necessary
for Fraud Prevention.
4. The Company may entrust all or part of its activities necessary for Fraud Prevention to a contractor with whom
it has entered into a confidentiality agreement.
5. Any user who does not agree to the use,
acquisition and provision of his/her personal information as prescribed in Paragraphs 1 through 4 above may not
use credit card payments for the services.
Such users will be required to choose a payment method other than credit card payment.
2.5.) Joint Use of Personal Information
The Company may handle personal information jointly with group companies and partner companies (hereafter referred
to as “Joint Use”) to the extent prescribed in
Schedule
2. In the case that any change in the items regarding Joint Use of personal information as published in
Schedule 2becomes necessary, the Company will notify
users of or publicly announce such change in advance.
2.6.) Outsourcing of Activities Involving the Handling of Personal Information
The Company may entrust all or part of its activities involving the handling of personal information to a third
party, to the minimum extent necessary to achieve the purposes of use set forth in
Schedule 1. In such case, the Company will ensure the
security in such entrustment by contract or other means and strictly control the handling of personal information
by the third party.
2.7.) Information Collection Module
The Company’s web services may incorporate the following information collection module in order to analyze
information such as the use of respective services and the effects of advertising of its services or products. By
doing so, the Company will provide user information for the following information collection module provider. Such
information collection module will collect user information without including any information that identifies
individuals, and information so collected will be managed in accordance with the privacy policy and other
provisions prescribed by the information collection module provider.
(1) Information Collection Module
The Company’s website uses Google Analytics provided by Google LLC in order to grasp the state of use of the site.
Google Analytics may obtain the history of customer activities on the website by using cookies, a mechanism that
temporarily records data on a customer’s computer through a browser when a user visits the website, but the
customer data collected, recorded and analyzed thereby contains no personally identifiable information. Collected
information will be managed in accordance with the privacy policy of the Company or Google LLC.
Terms of Use of Google Analytics:
https://marketingplatform.google.com/about/analytics/terms/jp/
Privacy Policy of information module provider:
https://marketingplatform.google.com/about/analytics/terms/us/
(2) Use of Microsoft Clarity
Our company uses Microsoft Clarity to understand how customers interact with our website and to improve it.
By using our site, you agree that both our company and Microsoft can collect and use this data.
This data is collected anonymously and is not personally identifiable.
For more information on how Microsoft collects and uses your data, please refer to the link below.
Microsoft Privacy Statement
2.8.) Behavioral Targeting Advertising
The Company’s website uses tools and services provided by third parties aimed at the provision of statistics,
analysis, advertisements, etc. Therefore, information of customers who have accessed the Company’s website may be
provided by means of cookies in a non-personally identifiable form to the providers of tools/services.
If you wish to disable (opt out) the distribution of advertisements, etc. via third-party cookies, please do so
via the following website of the company that will be the representative recipient of the information.
Opting out of Google Analytics
(link)
2.9.) Use of Cookies
Cookies are text information sent from a website and stored in a web browser when the website is visited.
The Company’s website uses cookies in order to enable users to receive services more conveniently.
For details, please see
the
cookie policy.
◇ 3. Initiatives for Security
On the Company’s website, close attention is paid to the handling and security of customers’ personal information
to ensure that customers can enjoy shopping safely.
3.1.) Purposes of Use of Registered Information
The Company registers the information of persons who placed an order. Information is registered only for use in
the Company, and no personal information of specific customers other than statistical information is disclosed
outside the Company, except when information about the Company’s services is sent by post, e-mail or other means
for the purpose of information provision or notice or when disclosure is required by law.
3.2.) Handling of Credit Card Information
Any customer who wishes to pay by credit card is required to register his/her card number, which is sent only to
the relevant credit company through a payment agency, and it is systematically impossible for the Company to
obtain or view his/her card number and all other registered information.
3.3.) Handling of Identification Documents
Though the Company may ask you to send a copy of your identification card by post, e-mail or other means in order
to confirm your date of birth and occupation, such document will be disposed of by shredding or melting
immediately after confirmation of the necessary items. A copy of an identification card will be checked for the
purpose of identifying your date of birth and occupation. So, please black out or cut out your license number,
permanent address and other items unnecessary for inquiry before sending it.
3.4.) Handling of Documents, Slips, etc. Containing Customer Information
As for documents, slips, etc. that have been generated during work at the Company and are to be disposed of
outside the Company, parts containing customers’ names, addresses, etc. are cut off and shredded. Therefore,
customer information will not leak from any disposed documents.
◇ 4. Respect for Customers’ Rights
The Company respects customers’ rights related to personal information. The Company will respond in good faith to
customers’ requests in accordance with the following principles.
4.1.) Disclosure and Correction/Change of Personal Information
In principle, the Company will not return various kinds of documents submitted in the course of transactions.
These documents will be strictly managed at the Company and be properly disposed of after the prescribed storage
period.
If a customer, an agent authorized by a customer, or a legal representative requests that the customer’s own
personal information be disclosed, corrected or otherwise handled, the Company will promptly respond to such
request to the extent reasonable. In the case of information disclosure, the Company will separately charge the
actual cost. For disclosure procedures or correction, please contact the Company as set forth in
Schedule 3.
Customers can also have e-mail messages, direct postal mails, phone calls, etc. from the Company stopped by
contacting the Company as set forth in
Schedule
4.
Correction of a circle’s personal information will also be handled if a facsimile or e-mail message is sent to the
contact shown at this link (
https://www.toranoana.jp/dojin/stipulation.html)(Circle Terms and
Conditions).
[About SSL]
The Company takes all possible measures to prevent personal information from being transmitted without protection
by employing an encryption technology called SSL for all pages on its website where personal information needs to
be entered.
SSL (Secure Socket Layer) is an Internet encryption technology recommended by credit card companies. Since a
compatible browser allows you to view encrypted messages in real time, you can send personal information
safely.
Please note, however, that the Company does not guarantee the security of SSL and that the Company and credit card
companies will not be liable for any data leakage or other accident that may occur.
4.2.) Response to Inquiries, etc.
The Company will accept and respond in good faith to complaints, requests for consultation and inquiries regarding
personal information. For inquiries, please contact the inquiry desk set forth in
Schedule 4.
4.3.) Response to Infringement of Rights, etc.
In the case that the rights of any customer are, or are likely to be, infringed upon due to the leakage of
personal information, etc., the Company will promptly notify the customer thereof and make efforts sincerely and
promptly to handle the situation so that no rights of the customer will be undermined.
◇ 5. Information (Excluding Personal Information) Collected by the
Company in Connection with Use of Services
◇ 6. Miscellaneous
This policy and accompanying schedules, etc. may be amended without prior notice. Please understand this in
advance and check the latest policy and schedules, etc.
The Company posts this policy on the website managed by the Company and promotional materials issued by the
Company, stores, etc. to widely publicize it.
Please note in advance that the Company may record conversations with customers as needed to ensure that the
Company will be able to respond to their questions and requests.
Toranoana Inc.
