Toshiba Information Systems (Japan) Corporation
Privacy Policy
Under its fundamental management philosophy of commitment to people, Toshiba Information Systems (Japan) Corporation ("Toshiba Information Systems," "we," "our" or "us") aims to enhance its corporate value through its business activities in the field of information services and contribute to improving people's quality of life and developing their culture.
We offer our customers technologies and services that are highly social and may involve personal information. The business includes sales operations, engineering operations including system construction/development, operation, maintenance, and educational support, and staff operations such as planning, general affairs, accounting, procurement, and information system development and operation.
In an unlikely event of a leakage of or damage to the personal information of our customers or stakeholders during these operations, the rights and interests of the customers, system users or stakeholders, who are the persons to whom the personal information refers, may be impaired.
In addition, we are aware that significant impacts resulting from such an incident could cause not only Toshiba Information Systems but also the entire Toshiba group to lose the trust of customers and the society and risk the business continuity and company management.
Accordingly, recognizing the importance of protecting personal information that includes Specific Personal Information (tokutei kojin jouhou), Toshiba Information Systems makes every effort to fully comply with the following policy to respect the rights and interests of the persons to whom personal information refers.
1. Privacy Policy
- Toshiba Information Systems has established a management system for the protection of personal information, and steadily implements and maintains it, while striving to continuously improve it for increased security.
- Toshiba Information Systems utilizes personal information within the scope of the intended use that is clearly communicated to customers and employees and takes measures to prevent any unintended use. Toshiba Information Systems will not disclose or provide personal information provided by customers to third parties except with the consent of the customer from whom the personal information was obtained or when there is a legitimate reason. Toshiba Information Systems handles Specific Personal Information only within the scope of the intended use pursuant to the relevant laws.
- Toshiba Information Systems strictly observes laws and regulations on the protection of Specific Personal Information and personal information, guidelines established by the government, other regulations and internal rules of Toshiba Information Systems.
- To ensure the security and accuracy of personal information that includes Specific Personal Information, Toshiba Information Systems implements safety measures and provides its employees with training programs, and establishes corrective and other necessary measures with the aim of preventing unauthorized access to, or loss, damage, falsification or leakage of, or other incident involving, personal information. Toshiba Information Systems takes measures for managing the security of Specific Personal Information while collecting, using or storing it in accordance with the rules prescribed in the relevant laws and guidelines concerning Specific Personal Information.
- Toshiba Information Systems adequately responds to complaints and inquiries from customers concerning personal information that includes Specific Personal Information and requests from customers for disclosure or other similar requests.
Revised:
Enforced:
Ken Nemoto
Representative Executive Officer
Toshiba Information Systems (Japan) Corporation
2. The PrivacyMark
In November 1998, Toshiba Information Systems acquired PrivacyMark certification from JIPDEC. The PrivacyMark is awarded to companies that appropriately handle personal information.(https://privacymark.org/)
3. Intended Use of Personal Information
When collecting personal information, Toshiba Information Systems clearly indicates in advance the purpose for which the personal information is intended to be used, and uses such data within the scope of the stated purpose of use.
When it becomes necessary to use personal information for any purpose that goes beyond the stated purpose of use, Toshiba Information Systems separately notifies the person to whom the personal information refers of the need and obtains the person's consent before using the data for such purpose.
Refer to Intended Use of Personal Information(https://www.tjsys.co.jp/english/privacy/purpose.htm) for the intended use of personal information held by Toshiba Information Systems.
4. Provision of Personal Information
Toshiba Information Systems obtains the prior consent of the person to whom the personal information refers before disclosing such person's personal information to third parties or providing it for third parties. However, we may provide personal information without obtaining the consent of the person to whom the personal information refers in the following cases.
- When personal information is disclosed or provided pursuant to laws and regulations.
- When disclosure or provision is necessary for the protection of human life, human health or property and it is difficult to obtain the consent of the person to whom the personal information refers.
- When Toshiba Information Systems consigns the handling of personal information to a third party within the scope necessary to achieve the specified purpose of use.
- When another entity succeeds to the business of Toshiba Information Systems due to a merger, company split, transfer of business or otherwise.
- When Toshiba Information Systems shares personal information with other parties and has entered into an agreement with those parties concerning the sharing of data.
5. Inquiries Concerning Personal Information
- Please make any inquiries concerning your personal information to the department with which you have registered such data.
- If you have any inquiries concerning our Privacy Policy or if you do not remember with which department, you have registered your personal information, please contact the division described in "Contact for Inquiries to Toshiba Information Systems" below.
6. Measures Taken for Security Management
We will prevent the leakage, loss, or damage of personal data (including personal information that we have acquired or are planning to acquire that we plan to treat as personal data) as follows. We take measures to appropriately manage other personal data.
(Formulation of basic policy)
- We have formulated and published a "Personal Information Protection Policy" to ensure the proper handling of personal data.
(Development of Rules for the Handling of Personal Data)
- We have formulated personal data handling regulations regarding the method of handling, person responsible or person in charge, their duties and other relevant matters for each stage of acquisition, use, saving, provision, deletion, destruction and other handling of personal data.
(Organizational Security Management Measures)
- In addition to appointing a manager responsible for handling personal data, we have clarified the employees involved with the handling of personal data as well as the scope of the data handled by them, and we have established a system for reporting and contacting the manager if evidence or indications of violations of the relevant laws or handling regulations is detected.
- In addition to regular self-inspections regarding the handling of personal data, we undergo audits conducted by outside departments and third parties.
(Human Security Management Measures)
- We regularly provide training to employees regarding precautions for the handling of personal data.
- Our employee regulations include provisions on the confidentiality of personal data.
(Physical Security Management Measures)
- In areas where personal data is handled, we place restrictions on employee access and on equipment that can be brought into the office. We also implement measures to prevent unauthorized persons from viewing personal data.
- We take measures to prevent the theft or loss of or other similar incident involving equipment, electronic media and documents, etc. that handle personal data, and take measures to ensure that personal data is not easily revealed when such equipment or electronic media are transported, including within company premises.
(Technical Security Management Measures)
- We implement access control to limit the scope of personnel and personal information databases handled.
- We have implemented a system to protect information systems that handle personal data from unauthorized outside access or harmful software.
7. Procedures Concerning Requests for Disclosure
Toshiba Information Systems responds to the following requests from customers concerning the customer's personal information held by it.
- Requests for disclosure of personal information or records of disclosure to third parties.
- Requests for notification of the intended purpose of use of personal information.
- Requests for correction of personal information.
- Requests for addition of personal information.
- Requests for deletion of personal information.
- Request for suspension of use of personal information or suspension of provision to third parties.
Please refer to Procedures Concerning Requests for Disclosure(https://www.tjsys.co.jp/english/privacy/procedure.htm) for details of the procedures for requests listed above, how to obtain our prescribed written request form and other relevant information. Please note that (1) requests for disclosure of personal information or records of disclosure to third parties and (2) requests for notification of the intended purpose of use of personal information are subject to fees.
8. Other
- Please note that some services provided by Toshiba Information Systems may not be available if you do not provide your personal information.
- When children under 16 years provide their personal information to Toshiba Information Systems, they should provide it only after obtaining the consent to the provision from a parent or guardian.
- Toshiba Information Systems may use cookies to provide better services on its website. For details, please refer to Use of Cookies.(https://www.tjsys.co.jp/english/copyright/terms.htm)
- Toshiba Information Systems is not responsible for the security of your personal information on third parties' websites that are linked from the website of Toshiba Information Systems.
-
Regarding the joint use of personal information between our company and Toshiba
Group employees
Within the scope of "3. Purpose of use of personal information," some of the employee
information (excluding personal information requiring special consideration) will be
disclosed and used within Toshiba Group.
-
Items to be shared
Employees' names, their positions in the organization, organizations to which they belong, their telephone numbers and email address etc. -
Scope of the sharing
Toshiba group companies
-
Intended use
- To business communications
- To share information on joint projects
-
Personal Information Protection Manager
Director, General Manager of Business Planning Division of Toshiba Information Systems
Kowa Kawasaki Higashiguchi Building, 1-53 Nissin-cho, Kawasaki-ku, Kawasaki, Kanagawa 210-8540 Japan -
How information is acquisition
To be obtained from the personnel affair's information of each company
-
Items to be shared
Contact for Inquiries to Toshiba Information Systems
Please read Important Considerations before Making an Inquiry before contacting us concerning our Privacy Policy.
Toshiba Information Systems (Japan) Corporation
Contact for Inquiries Concerning Protection of Personal Information
(General Manager of Personnel Management and Security Group, Personnel
Management Division)
Kowa Kawasaki Higashiguchi Building, 1-53 Nissin-cho, Kawasaki-ku,
Kawasaki, Kanagawa 210-8540 Japan
Tel: 044-200-5111
Service hours: 9:00-17:00
(Except on Saturdays, Sundays, public holidays, year-end and New Year
holidays, and other holidays specified by Toshiba Information Systems)
Please write comments and inquiries as specifically as possible.
Name of the Accredited Personal Information Protection Organization and
the Entity with Which You Can Lodge Complaints for Resolution
[Only complaints concerning the handling of personal information will be accepted.]
Toshiba Information Systems is one of the covered businesses of the following Accredited Personal Information Protection Organization.
Name | JIPDEC |
---|---|
Entity with which you can lodge complaints for resolution | Accredited Personal Information Protection Organization Administrative Office |
Address | Roppongi First Building, 9-9 Roppongi 1-chome, Minato-ku Tokyo, 106-0032 Japan |
Tel | 03-5860-7565 0120-700-779 |
Personal Information Protection Manager (Director, General Manager of Business Planning Division)