Privacy policy
Each of the terms set forth below (the “Terms, etc.”) is provided in Japanese as an original. If there is any discrepancy between the English translation of each of the Terms, etc. and its Japanese text, the Japanese text shall prevail.
privacy policy
[Philosophy of personal information protection]
Activity Japan Co., Ltd. (hereinafter referred to as "our company") is an Internet platform business, land-based tourism product creation, sales, wholesale for Japanese and foreign visitors to Japan, regional promotion business (research / marketing, WEB construction, PR, sales / sales Analysis) We are conducting business activities centered on the implementation of activity experience events. Personal information obtained from individuals through business activities and personal information of our employees (hereinafter referred to as “personal information”) is important information for our company, and it is important for our company to securely protect such personal information. We recognize it as a social responsibility. Therefore, we will handle personal information obtained through our business activities in accordance with the following policy, and will provide “peace of mind” to individuals and fulfill our social responsibility regarding the protection of personal information.
【policy】
- 1. Acquisition, use and provision of personal information
- ・We will acquire personal information by lawful and fair means.
- ・We will use personal information within the scope necessary to achieve the purpose of use.
- ・When providing personal information to a third party, we will obtain the consent of the person in advance.
- ・We will not use the acquired personal information for any other purpose. We will also take measures to that end.
- ・If it becomes necessary to use personal information for purposes other than those intended, we will use it after obtaining consent for the new purpose of use.
- 2. Laws, guidelines established by the government, and other norms (hereinafter referred to as "laws, etc.")
- We will always strive to understand the laws and regulations related to the business that handles personal information, and will inform and comply with them to employees engaged in our business (hereinafter referred to as "employees").
- 3. Safety management of personal information
- ・In order to prevent various risks such as unauthorized access to personal information, leakage, loss or damage of personal information, we will establish and maintain a system to take prompt corrective measures for safe management of personal information.
- ・We will conduct inspections and promptly correct any violations or accidents that are discovered, as well as implement preventive measures against weaknesses.
- ・We will thoroughly educate employees about safety.
- Four. Complaints and consultations
- For complaints and consultations regarding the handling of personal information, we will set up a personal information inquiry desk, build a system that enables prompt response, and respond in good faith.
- Five. About continuous improvement
- ・In order to protect personal information, our personal information protection management system monitors and audits the status of compliance with internal regulations, strives to discover violations, incidents, accidents and weaknesses, and conducts reviews by management. We will reflect this in our management measures and internal regulations, and strive to continuously improve our personal information protection management system.
- ・We will comply with laws and regulations and JIS Q 15001 when making improvements.
Established date: March 16, 2016
Final revision date” Thursday, April 11, 2024
Activity Japan Co., Ltd.
Representative Director Chen Ming Ming
[Inquiries about the contents of the personal information protection policy]
Activity Japan Co., Ltd. Personal Information Inquiry Desk
〒160-0004 2nd floor, WESTALL Yotsuya Building, 1-22-5 Yotsuya, Shinjuku-ku, Tokyo
TEL: 03-6862-5311 (Weekdays 10:00-17:00)
Person responsible for personal information: Personal information protection manager Yuji Ogawa
1. Information on handling of Personal Information
[Purpose of use of personal information]
| Type of personal information | purpose of use | Disclosure classification |
|---|---|---|
Information of those who requested materials or made inquiries |
To respond to inquiries and provide information on services, etc. |
Disclosure |
Information about job candidates and applicants |
For recruitment selection, communication, etc. |
Disclosure |
Employee information |
For employment management such as personnel affairs and general affairs |
Disclosure |
Kana processing information |
For internal tabulation work, etc. |
non-disclosure |
[Regarding measures taken for safe management of retained personal data]
| Formulation of basic policy | We publish our personal information protection policy on our website. | |
|---|---|---|
| discipline | We formulate rules for handling methods, persons in charge, and their duties, etc. for each stage of acquisition, use, provision, and disposal, and review them regularly. |
|
| Systematic security control measures | We conduct regular self-inspections, internal audits, and external audits. | |
| Personnel security control measures | We have obtained a pledge of confidentiality from our employees, and we provide regular education to our employees. | |
| physical security measures | We manage areas where personal information is handled, and implement measures to prevent theft of equipment and electronic media. | |
| Technical safety control measures | We have introduced a mechanism to protect against unauthorized access from the outside. | |
| Understanding the external environment |
Personal information is stored using cloud services.
The data center locations (regions) of the cloud service are mainly in Japan, the United States, the EU, etc. *1
After confirming that the relevant cloud service has appropriate access control, we strive to understand the personal information protection systems in these countries and regions. *2
*1: For security reasons, some data centers distribute regions around the world and do not disclose them, so it is practically difficult to keep track of all regions. *2: For the reason of *1, it is practically difficult to grasp the personal information protection systems of all regions, but we have obtained highly reliable certifications such as ISO/IEC27001, ISO/IEC 27017, and ISO/IEC 27018. We strive to select services that |
[Regarding request procedures for disclosure, etc.]
Regarding the retained personal data held by the Company, the Company may receive notification of the purpose of use, disclosure, correction, addition or deletion of content, suspension of use, erasure, and deletion of the retained personal data held by the Company. The procedures for stopping provision to third parties and responding to records of provision to third parties (hereinafter referred to as "requests for disclosure, etc.") are as follows.
- 1. Where to submit requests for disclosure, etc.
For requests for disclosure, etc., please submit a personal information disclosure request form by any convenient method (email, fax, or mail).
If the submission is by mail, please use a method that allows confirmation of the delivery record, such as delivery record mail or simple registered mail.
In addition, we would appreciate it if you could write in red ink on the envelope, "Personal Information Disclosure Request Form Enclosed."
Please contact us if you would like us to attach it to your e-mail.
- 2. Documents to be submitted for requests for disclosure, etc.
When making a request for disclosure, etc., please fill in all the specified items on the personal information disclosure request form.
Regarding the disclosure of retained personal data, in principle, we will respond by the method designated by the person. Please specify in the designated column of the personal information disclosure request form, such as disclosure by electromagnetic record, disclosure in writing, disclosure by other methods decided by our company, etc.
*If disclosure by the method instructed by the person in question requires a large amount of money, or if the burden on the Company is significant, the Company may unavoidably choose a method of disclosure determined by the Company.
- 3. Identity verification
In order to verify the identity of the person requesting disclosure, etc., the Company will conduct verification by telephone. However, if verification by phone is not possible, we may ask you to present a copy of your driver's license, resident card, health insurance card, etc.
- 4. Request for disclosure, etc. by an agent
When entrusting a request for disclosure, etc. to an agent, please prepare the following documents in addition to the personal information disclosure request form.
(1) Documents (copy) to confirm the identity of the agent
Either one of a driver's license, a copy of a resident's card, or a health insurance card
*Please prepare a copy with the registered domicile blacked out.
(2) Power of attorney (Affix your seal on the power of attorney and attach the seal registration certificate of that seal. If the agent is a legal representative such as a person with parental authority, please use the power of attorney instead of the power of attorney. It is also possible to submit documents that show the relationship with
- 5. Fees for requests for disclosure and notification of purpose of use
When requesting disclosure of personal information and notification of purpose of use, a fee of 2,000 yen will be charged for each request.
Please transfer 2,000 yen by bank transfer to pay the fee.
*When we verify your identity, we will inform you of the transfer account information.
*Please bear the transfer fee.
Please note that if the fee is insufficient or if the transfer cannot be confirmed, we will not be able to disclose or notify you of the purpose of use.
- 6. How to respond to requests for disclosure, etc.
We will reply by the method convenient for the requester (email, fax, mail).
If you have any questions or complaints or consultations regarding personal data held by our company, please contact us at the following contact point.
Activity Japan Co., Ltd. Personal Information Inquiry Desk
〒160-0004 2nd floor, WESTALL Yotsuya Building, 1-22-5 Yotsuya, Shinjuku-ku, Tokyo
TEL: 03-6862-5311 (Weekdays 10:00-17:00)
Person responsible for personal information: Personal information protection manager Yuji Ogawa
2. Information on shared use of Personal Information
Among the Personal Information provided by customers, the Company shares with a company in the KKday corporate group such details as names, addresses, telephone numbers, email addresses, passport numbers and the like for purposes of developing such products as package tours, sales promotion activities involving introduction of products, as well as to contact and respond to our customers, and for purposes of service improvements, research and development. The entity responsible for managing such Personal Information shall be the Company (location: WESTALL Yotsuya Building 2F, 1-22-5 Yotsuya, Shinjuku-ku, Tokyo; Chen Mingming, Representative).
[Company of Corporate Group]
KKDay Japan Co., Ltd.
3. Notes on voluntary provision of Personal Information
Our customers may refuse to provide the Personal Information described in Section 1-1 above, but there may be instances where the Company will not be able to fulfill actions for purposes described above.
4. Information on proper management of Personal Information
The Company strives to maintain acquired Personal Information accurate and up to date within the scope of purpose of use described above, and implements necessary and optimum safety control measures to prevent unauthorized access, tampering, leaks, etc. Furthermore, the Company shall provide the necessary training to our officers, employees and other relevant parties, to facilitate the proper handling of Personal Information.
5. Information on consignment and provision of Personal Information to third parties
Personal information acquired by the Company shall not be provided to third parties except in cases 1) to 5) described below. In addition to cases 1) to 5), the Company may consign Personal Information to third parties with whom the Company has concluded a memorandum on handling of Personal Information for the purpose of fulfilling purposes of use as described above.
- 1) In the event there is consent from the individual 2) In the event actions are taken according to laws and ordinances 3) In the event actions are necessary to protect life, physical wellbeing or properties of an individual, where obtaining consent from such an individual is difficult
- 4) In the event the information is specifically required for the purpose of improving public health or promoting healthy growth of children, where obtaining consent from the individual is difficult
- 5) In the event the information must provided to an organization of the national government or local public organization or entities that have been consigned to perform work on their behalf, in order to fulfill duties as specified by laws and ordinances, for which obtaining consent from the individuals can potentially impede on the fulfillment of such work
6. Management of outsources
The Company shall instruct outsources described in the preceding section, to ensure that Personal Information is handled appropriately, and to manage the information in such a way that it is not provided to third parties or used for purposes other than intended.
7. Information on complaints about handling of Personal Information
The Company responds in good faith to complaints relating to handling of Personal Information held by the Company, as well as fulfilling actions for notification on purpose of use, disclosure of Personal Information, amendments, additions or deletion of details in Personal Information, as well as suspension of use or deletion or suspension of provision to third parties.
Notify the Company at the Complaints and Consultations Contact described below, to file a complaint regarding handling of Personal Information, to receive notification on purpose of use, disclosure of Personal Information, as well as amendment, addition or deletion of details in Personal Information, suspension of use or deletion or suspension of provision to third parties, declaration of refusal to use or provide the information. Details on procedures shall be explained to the customer at the time contact is made.
Once the authentication that the applicant of such requests is indeed the person of information is achieved, the Personal Information of the customer shall be disclosed, amended or deleted and the like, within a reasonable time period and to a reasonable extent.
8. Information on non-disclosure of Personal Information
The information shall not be disclosed in instances stipulated below. A notification shall be provided in the event a decision is made not to disclose the information, along with the reason for such decision.
- ● Instances where personal authentication is not possible because the address entered on the application form does not match with the address described on documents provided for personal identification and the address registered with the Company
- ● Instances where the right of representation cannot be verified for a request made by a representative.
- ● Instances where there are flaws with submitted prescribed documents
- ● Instances where the Personal Information held by the Company could not be identified according to the details provided in the application form.
- ● Instances where the relevant Personal Information was consigned to us from a third party
- ● Instances where life, physical wellbeing, properties and other rights and interests of the person or a third party may be in jeopardy
- ● Instances where the proper operation of the Company may be subjected to significant impediment
- ● In other instances where laws and ordinances may be violated
9. Information on amendments
The Company may amend details regarding handling of Personal Information, in response to a change in purpose of use or to seek protection of Personal Information, as well as in response to changes with laws, ordinances and the like. Details of changes shall be posted on our website for a certain time period and notified to our customers.
10. Contact for Complaints and Consultations on Personal Information
The contact for complaints and consultations on Personal Information is described below.
Activity Japan Co., Ltd.
1-22-5 Yotsuya, Shinjuku-ku, Tokyo 160-0004 WESTALL Yotsuya Building 2nd floor
11. Information on cookies
Cookies and other identifiers are used to gain understanding on the user trends of our customers as statistical information at our corporate website and https://activityjapan.com/.The information acquired in this manner, however, cannot be used to identify individuals.
Privacy notification
12. Information on access logs
Information on IP addresses, browser types, referenced URLs and the like is collected from access logs at https://activityjapan.com/. The collected information is used as statistical information to analyze user trends of the websites and nothing is reflected back on the Personal Information.
Handling of Personal Information (Consent Matters)
[Information on provision to third parties]
Unless stipulated by law, the Company shall not provide Personal Information of any person to a third party, without first obtaining consent from such person.
[Information on provision to third parties located in foreign countries]
1. Information on provision of Personal Data to third parties located in foreign countries
The Company may provide the Personal Information of our customers to third parties (partner businesses and the like) that are located in foreign countries, to the extent necessary to provide services. Countries eligible for such consideration shall be those countries that satisfy one of conditions described below, as a general rule.
a. Countries that are subject to GDPR (EU and EEA member states) and the United Kingdom (foreign countries that are designated as having a Personal Information Protection Commission with systems in place for the protection of Personal Information that are recognized as offering the same level of protection as in Japan) Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Liechtenstein, Iceland, Norway, and the United Kingdom (Reference: Personal Information Protection Commission Notification No. 1 and No. 5 of 2019)
b. Countries and territories that have sufficient certifications based on Article 45 of the GDPR (where the European Commission has recognized that there is an adequate level of data protection according to the GDPR) Argentina, Andorra, Israel, Uruguay, United Kingdom, Canada, South Korea, Switzerland, Faroe Islands, Kingdom of Denmark, New Zealand
* Reference:https://www.ppc.go.jp/enforcement/infoprovision/laws/GDPR/
c. Member countries and territories of the CBPR System of APEC 16.1.3 (laws and ordinances in place that comply with the privacy framework of the APEC) America, Mexico, Canada, Singapore, South Korea, Australia, Taiwan, the Philippines
*Reference:https://www.ppc.go.jp/enforcement/cooperation/international_conference/
http://cbprs.org/
d. Countries that are considered to have completed the establishment of basic legal systems for the protection of Personal Information (with a certain level of evaluation provided by the Japan Information Processing and Development Center (JIPDEC)) China
*Reference:https://www.jipdec.or.jp/library/itreport/2021itreport_winter03.html
e. Malaysia: Law and ordinances pertaining to Personal Information protection has been established. See below for details.
https://www.ppc.go.jp/files/pdf/malaysia_report.pdf
f. In the event a third party to which Personal Information of our customer is in a country that corresponds to descriptions in Paragraphs a to d under Article 7 above, any and all such third parties shall have measures for protection of Personal Information that complies with provisions of the Eight Principles of the OECD Privacy Guidelines and JISQ15001 (Privacy Mark). Regarding the Socialist Republic of Vietnam, the "Ordinance on Personal Information Protection" is scheduled to come into effect in July 2023, and for the Kingdom of Thailand, the "Personal Data Protection Act (PDPA)" is in place, which is GDPR compliant, and while these measures described above do not apply to protection of Personal Information, we believe that these guarantee the security of information. Click here for details on the investigation of systems relating to protection of Personal Information in foreign countries, provided by the Personal Information Protection Commission.
g. Even in the event a foreign country to which personal data is provided does not correspond to descriptions in Paragraphs a to ed under Article 7 above, the Company shall appropriately implement control of outsources in compliance with provisions for the Privacy Mark, and ensure implementation of secure consignments.
[Regarding outsourcing of handling of personal information]
In business operations, we may outsource part of our business to provide better services. In this case, we will select a subcontractor that is recognized to handle personal information appropriately, determine necessary items to prevent leakage of personal information of the person by proper management and confidentiality of personal information in contracts, etc., and manage it appropriately. be carried out.
[Regarding the voluntariness of personal information submission]
Submitting personal information to us is voluntary. However, please note that if personal information is not submitted, we may not be able to reply or provide services.
If you have any questions or concerns regarding our handling of personal information, please contact us at the contact below.
Activity Japan Co., Ltd. Personal Information Inquiry Desk
〒160-0004 2nd floor, WESTALL Yotsuya Building, 1-22-5 Yotsuya, Shinjuku-ku, Tokyo
TEL: 03-6862-5311 (Weekdays 10:00-17:00)
Person responsible for personal information: Personal information protection manager Yuji Ogawa
Established date: March 16, 2016
Final revision date” Thursday, April 11, 2024
Activity Japan Co., Ltd.
Representative Director Chen Ming Ming
Please wait a moment