Go to the text

Information regarding public announcements based on the Act on the Protection of Personal Information

Based on the Act on the Protection of Personal Information, we will announce the following matters.

1. Matters regarding publication of purpose of use of personal information

《Personal information about customers》

  1. Business activities listed in ⅰ) to ⅲ) below

    ⅰ. Product sales, licensing, and service provision

    ⅱ.Advertisement/publicity/sales promotion activities
    (Information on products, services, campaigns, seminars, exhibitions, and various events via email, direct mail, etc.)

    ⅲ.Customer support such as after-sales service
    (Including use for registration, identity authentication, customer satisfaction surveys, emergency contact, etc.)
  2. Necessary communications for responding to inquiries about products and services, requesting quotations, purchasing, sales partnerships, etc.
  3. Management of shareholders and provision of information to shareholders and investors as part of IR activities
  4. Providing information and various communications to the media, reporters, etc. as part of public relations activities
  5. Various communications related to recruitment activities (considering and deciding whether to hire or not, considering and deciding on employment conditions, responding to inquiries)

*If the purpose of use is individually notified or announced, it will be based on the purpose of use.
*Based on the personal information provided, our company may create statistical data that has been processed so that individuals cannot be identified. Our company may use statistical data that cannot identify individuals without any restrictions.

《Personal information entrusted》

  1. Fulfillment of contract regarding outsourced work

2. Matters regarding provision of personal data to third parties

Our company will appropriately manage personal data and will not provide it to a third party without the customer's prior consent. However, the following cases are excluded.

  1. When based on laws and regulations
  2. When it is necessary to protect a person's life, body, or property, and it is difficult to obtain the consent of the person.
  3. When it is particularly necessary to improve public health or promote the healthy upbringing of children, and it is difficult to obtain the consent of the individual.
  4. Cases in which it is necessary to cooperate with a state organ or a local government or an entrusted person in executing the affairs prescribed by laws and regulations and in which obtaining the consent of the person is likely to hinder the execution of the affairs

3. Matters regarding joint use of personal data

We may share personal data. In the case of joint use, when acquiring personal information, the items of personal data to be jointly used, the scope of joint users, the purpose of use of the users, and the person responsible for the management of the personal data. We will clearly indicate the name of the person in advance.

4. Matters regarding retained personal data

  1. Name of business entity handling personal information
    6-27-30 Shinjuku, Shinjuku-ku, Tokyo
    SB Technology Corp.
    Representative Director Shinichi Ata
  2. Purpose of use of retained personal data
    As stated in Matters regarding disclosure of purpose of use of personal information.
  3. Contents of safety management measures

    ⅰ. Formulation of basic policy
    We have established a basic policy to ensure the proper handling of personal data as an organization.

    ⅱ.Establishment of regulations regarding the handling of personal data
    We have established handling regulations regarding how personal data will be handled, who will be in charge and their duties, etc.

    ⅲ.Organizational safety management measures
    Our company clarifies their responsibilities regarding the protection of personal information by appointing persons in charge of personal information protection, such as a personal information protection manager, audit supervisor, education staff, complaint/consultation desk staff, etc. Additionally, we have formed a company-wide organization centered around a personal information protection manager, and are implementing measures and initiatives related to personal information protection.
    The personal information protection officer confirms that personal information is handled in accordance with the personal information handling regulations.
    In preparation for the occurrence of a leak of personal information, our company has established a system in advance for employees to report to the personal information officer.
    We periodically conduct self-checks by business divisions and internal audits by auditors to ensure that the personal information protection management system is properly operated, in conjunction with external audit activities. If any malfunction is found at that time, the cause will be clarified and corrective action will be taken. We will also take preventive measures to prevent problems in the same way.

    ⅳ.Personnel safety management measures
    Our company regularly conducts training for all employees for the purpose of understanding laws and standards regarding the protection of personal information, and improving awareness and enlightenment regarding safety management.

    v. Physical safety control measures
    Our company has installed an entry/exit control system using IC cards to manage areas where personal data is handled. Additionally, devices that handle personal data and media on which personal data is recorded are stored in locked cabinets, archives, etc. When carrying such media, we take safe measures to prevent loss or theft, such as setting a password or enclosing the media in an envelope and transporting it in a bag. When personal data is deleted or devices, electronic media, etc. on which personal data is recorded are disposed of, this will be confirmed through an internal audit.

    vi.Technical safety control measures
    Our company clarifies the devices that can handle personal data and the employees who handle those devices, and prevents unnecessary access to personal data. We keep the operating systems of devices that handle personal data up to date by using automatic update functions. We prevent unauthorized access from outside by installing firewalls and implementing security software. When sending files containing personal data by e-mail, etc., we have installed software that automatically sets a password for the file to prevent leaks due to the use of our information systems. When sending files containing personal data by e-mail, etc., we have installed software that automatically sets a password for the file to prevent leaks due to the use of our information systems.

    vii. Understanding the external environment
    When handling personal information obtained from customers in a foreign country, our company will implement appropriate security control measures after understanding the system for protecting personal information in that foreign country.
  4. Employee supervision
    Our company provides necessary and appropriate supervision over employees to ensure the safe management of personal information and personal data. In addition, we will provide employees with the necessary education and training to ensure the proper handling of personal information.
  5. Supervision of subcontractors
    Our company may outsource the handling of personal data, in whole or in part, within the scope of the purpose of use, in the sale of various products, licensing, provision of services, marketing operations, and other operations. In this case, our company will evaluate the management level regarding information security and personal information protection, select a company that is deemed to handle personal information appropriately, and when concluding a consignment contract, we will take safety management measures, maintain confidentiality, We will implement necessary and appropriate management by establishing conditions for subcontracting and other matters related to the proper handling of personal data, and by conducting periodic monitoring of the status of outsourced work.
  6. Procedures for requesting disclosure, etc.
    The procedure for requesting disclosure, correction, addition, deletion, or notification of the purpose of use of personal data held by our company is as follows.

    ⅰ.Request format
    From our homepage, “Personal information disclosure request form (Japanese only)" Please download and use it.
    Customer" If you are unable to download ”Personal information disclosure request form (Japanese only)”, we will contact you by fax, etc.

    ⅱ. Attached documents
    Please fill out the required documents below. Personal information disclosure request form (Japanese only)” and send it to the rquest address.
    a. As a document to confirm your identity, Personal information disclosure request form (Japanese only) (Please note that if you are a representative, you will need a separate document to confirm that you are the agent, in addition to the documents to confirm your identity.)
    b. Stamps related to fee payment (not required in case of correction, addition, or deletion of personal information)

    ⅲ.Payment of fees
    A fee of 800 yen will be collected for disclosure of personal data and notification of purpose of use.
    Please send 800 yen worth of postage stamps for the handling fee.
    Please note that no fees will be charged for corrections, additions, or deletions of personal data.

    ⅳ.Request method
    We will only accept requests for disclosure, etc. by mail. "Personal information disclosure request form (Japanese only) Please fill out all the necessary information in the form and mail it along with the above "ii. Attached documents" to the address below.

    Request address: 160-0022
    6-27-30 Shinjuku, Shinjuku-ku, Tokyo
    SB Technology Corp.
    To the Information Security Secretariat

    v. How to respond to requests for disclosure, etc.
    We will begin the process of responding to you after the above envelope arrives at our company. As a general rule, we will respond by the method specified by the customer on the invoice. If it is difficult to use the specified method, we will notify the customer to that effect and mail the information to the address stated on the document confirming the customer's identity. Please note that it will take approximately two weeks from receipt to respond to your request, as this will allow us to conduct an internal investigation.

    ⅵ.About the individual's personal information regarding requests for disclosure, etc.
    "Personal information disclosure request form (Japanese only) The personal information you provide will be used for the purpose of replying to you, and will be destroyed one month after the date of sending the reply.

5. Matters regarding the reception desk for complaints and consultations

Our company will promptly and appropriately respond to complaints and consultations regarding personal information.
Our company is a business covered by the Japan Information Economy and Society Promotion Association, a certified personal information protection organization.
You can also submit complaints regarding our handling of personal information to this organization.

《Complaints/Consultation Desk》
sbt_security_policy@tech.softbank.co.jp

《Certified personal information protection organization》
Name of certified personal information protection organization
Japan Information Economy and Society Promotion Association

<Where to apply for complaint resolution>
Certified Personal Information Protection Organization Secretariat

<Address>
106-0032
Roppongi First Building, 1-9-9 Roppongi, Minato-ku, Tokyo

<Telephone number>
TEL:03-5860-7565
TEL:0120-700-779