The following discloses the policy adopted by Art Tokyo Association (hereafter, “we”) in regard to the handling of personal and private information of customers who make inquiries (hereafter, “users”).
The private information in this policy described as “personal information” is the information defined as such by the Japanese law on the protection of personal information. It indicates information related to a living individual and information through which a particular individual can be identified, such as name, address, telephone number, contact details, and other descriptors.
The private information in this policy described as “history and attributes information” indicates the information other than the aforementioned “personal information,” including services used, page views, advertising history, search keywords, usage time and date, usage method, usage environment, postal code and gender, occupation, age, user IP address, cookies data, location, and device identification information.
We ask users to register various items of personal information, including their name, address, telephone number, and email address. We also collect personal information shared by users with our business partners (information suppliers, advertisers, advertising platforms).
When users make use of our or our partners’ services or visit our websites, we collect history and attributes information related to the services used, page views, advertising history, search keywords, usage time and date, usage method, usage environment (in the case of mobile devices, transmission conditions for the device and the settings during usage), IP address, cookies data, location, and device identification information.
We collect and use personal information for the following purposes.
(1) Sending email newsletters with information on our events to the registered user email address.
(2) Using contact information such as name and address in order to send notifications by email to users or, as necessary, sending products to users.
(3) Using such information as name, address, and telephone number in order to confirm a user’s identity.
(4) Displaying registered information on an input screen so that users can submit data easily, or forwarding other services (including services offered by partners) based on user instructions.
(5) Using information for identifying individuals, such as by usage conditions, name, and address, in order to deny usage to users who breach the terms and conditions, such as by causing damage to third parties, or attempting to use our services for unlawful or invalid purposes.
(6) Using inquiry content information, contact information, user service usage status, and other information necessary for supplying our services to users in order to respond to user inquiries.
(7) For purposes attendant on those above.
Other than the following exceptions, we will never supply or share personal information to third parties without the prior permission of users. However, exceptions may be made in other cases recognized under the Personal Information Project Law or other laws.
(1) When based on law.
(2) When it is difficult to obtain permission directly from the respective user during cases that necessitate the supply of information for the protection of human life, body, or property.
(3) When it is difficult to obtain permission directly from the respective user during cases that necessitate the supply of information for improving public health or promoting the healthy upbringing of infants.
(4) When there are cases that necessitate cooperation with national organizations, regional government public bodies, or persons appointed by them in carrying out administrative activities stipulated by law, and obtaining permission from the respective user would interfere with the execution of those duties.
(5) When the following cases are announced or notified in advance:
When information includes information that is supplied to third parties for use
When data entries will be supplied to third parties
When it is a means of supplying information to third parties
When stopping the supply of personal information to third parties according to user requests
Irrespective of the aforementioned, the following are not defined as “third parties.”
(1) When entrusting all or part of the handling of personal information to others under our supervision within the necessary parameters for achieving the goals of usage.
(2) When personal information is supplied according to inheriting services due to mergers or other reasons.
(3) When notifying the user in advance or otherwise allowing the user to know this easily about the sharing and use of personal information with specific persons, including the personal information shared and used, the extent of its sharing and use, the handling of the personal information as well as the goals of the use, and the name or the persons or bodies responsible.
When entrusting the handling of user personal information to third parties, we will supervise subcontractors to ensure they handle information safely and appropriately, such as by concluding nondisclosure agreements with them.
When requested by a user to disclose the personal information we hold about them, we will immediately comply with the disclosure request. However, we may not disclose the information in whole or part in one of the following cases. If we determine we cannot disclose the information, we will immediately notify users of this.
(1) When there is risk of causing harm to the user or a third party’s life, body, property, or other rights and interests.
(2) When there is risk of causing significant obstruction to the appropriate carrying out of our duties.
(3) When disclosure would be unlawful.
Irrespective of the aforementioned, we do not in principle disclose information other than personal information related to history and attributes.
If users find that the personal information about them held by us is incorrect, they can request us to correct or delete the information according to a process we determine.
If we determine after receiving such a user request that it is necessary to comply with it, we will immediately undertake to correct or delete the appropriate personal information.
This website integrates Secure Sockets Layer (SSL) encryption technology on the pages where personal information is inputted in order to ensure security for users when submitting their information. With SSL, the inputted data is passed along a network after being encrypted at the device until it reaches the registered computer.
SSL is a security technology that protects against the theft or manipulation of data by third parties by carrying out encryption and authentication in the transmission process between the browser and server.
If requested by the user to cease using or to delete their personal information for reasons pertaining to our handling of their personal information in ways that exceed the purposes of its use or pertaining to our having obtained the information through wrongful means, we will immediately conduct a necessary survey and, based on the results of this, cease to use the personal information and notify the user of such actions. However, when the process of ending our usage of the personal information has significant costs or is otherwise problematic, and when substitute measures can be taken instead of this in order to protect the rights and interests of the user, we will undertake alternate actions.
Inquiries regarding this policy should be sent to the following.
Art Tokyo Association