Group basic policy regarding protection of personal information, etc.
March 19, 2024
Group basic policy regarding protection of personal information, etc.
Our group has established the following basic policy regarding the handling of personal information (including specific personal information), anonymously processed information, and pseudonymized information (hereinafter collectively referred to as "personal information, etc."). In addition to complying with this, we will manage all personal information handled more safely and appropriately.
1. Compliance with laws and regulations
Our group complies with the "Act on the Protection of Personal Information," the "Act on the Use of Numbers to Identify Specific Individuals in Administrative Procedures," and other related laws, government and ministerial ordinances, guidelines, etc. .
2. Matters regarding acquisition
Our group shall acquire personal information, etc. through appropriate and fair means, and unless permitted by law, we will clearly state or publicly announce the purpose of use to the individual in advance, or promptly notify the person after acquisition. Or we will make it public. In addition, when acquiring personal information that requires special consideration, we will obtain the consent of the individual in advance, unless permitted by law.
3. Matters regarding use
Our group will use personal information appropriately and within the scope necessary to achieve the purpose of use, except when permitted by law.
4. Matters regarding provision and disclosure
Our group will not disclose or provide personal information to third parties other than subcontractors, joint users, or business successors without the consent of the individual, unless permitted by law.
5. Matters regarding safety management measures
Our group takes necessary and appropriate safety management measures to prevent unauthorized access to, loss, destruction, falsification, leakage, etc. of personal information, etc., and maintains a system for protecting personal information, etc. and managing personal information, etc. We strive for continuous improvement. We will clarify the person in charge for each organization and provide necessary and appropriate education and training and supervision to employees and contractors who handle personal information, etc.
In addition, personal information, etc. will be kept accurate and up-to-date, and once the purpose of use has been achieved and the retention period stipulated by the relevant laws and regulations has expired, it will be promptly destroyed or deleted. In the unlikely event that a leak occurs, we will take prompt corrective measures depending on the incident.
6. Matters regarding disclosure of personal information, etc.
When our group receives a request for notification of the purpose of use, disclosure, correction, etc., suspension of use, suspension of provision to a third party, or request for disclosure of records provided to a third party regarding retained personal data, We will respond in accordance with the provisions of laws and regulations.