Privacy Statement for GDPR (or UK GDPR)

1.

Collection, Use, Provision, and Entrustment of Personal Information

For the purpose of this Privacy Statement, the following terms have the meanings as defined below.

• (a)‘Personal Information’ means any information relating to an identified or identifiable natural person, including but not limited to your name, address, birth date, telephone number, e-mail address, user ID, IP address, web beacons, and other online identifiers.

• (b)‘Processing’ means (including its correlative meanings, ‘Process’ and ‘Processed’) any operation or set of operations which is performed on Personal Information or on sets of Personal Information, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

  • (1)Unless permitted by applicable laws, the scope of use of the Personal Information collected is limited to the purposes of use described below, and the Personal Information shall be Processed appropriately within this scope.

  • (2)We will Process the following Personal Information for the following purposes:

    -We will Process the Personal Information collected through the contact form on our website in order to respond to your inquiries, questions, and/or other requests.

    -We may Process the Personal Information collected through Cookies for automated decision-making purposes, including profiling in order to provide services that may be of particular interest to you and recognizing your computer when you visit our website in order to improve our website's usability. For more information, please refer to the Cookie Policy.

    In the case of Processing your Personal Information for purposes other than the bove, we will notify you in advance of such new purposes of use and other matters as required by applicable law.

  • (3)We Process your Personal Information on the following legal bases:

    -Legitimate Interests. This refers to cases where the Processing of your Personal Information is necessary for legitimate interests pursued by us or a third party, such as responding to your inquiries, and your interests and fundamental rights do not override those interests. For further details regarding legitimate interests, please contact us using our details provided in Section 7 below.

    -Consent. This refers to cases where you have given us your consent to our Processing of your Personal Information. You have the right to withdraw your consent to our Processing of your Personal Information at any time. However, the withdrawal of your consent will not affect the lawfulness of our Processing of your Personal Information based on the consent given before your withdrawal.

    -Legal Obligation. This refers to cases where we are required to comply with a legal obligation.

  • (4)Personal Information that you are to provide may be necessary in order for us to provide our services to you, and there may be cases where you are unable to use the services if you have not provided such data.

    We may provide your Personal Information to third parties such as the subsidiaries and affiliates of NTT DATA, cloud vendors and outside contractors of NTT DATA in order to implement the purposes of use specified above.

    We may provide your Personal Information to third parties located outside the EEA or the UK (including, without limitation, Japan and the US). In the case that we provides your Personal Information to a third party located in a country outside the EEA or the UK, we will ensure that the recipient destination has been subject to a finding by the European Commission that it ensures an adequate level of protection for the rights and freedoms of individuals in respect of their Personal Information, or the Government of the UK has designated the recipient destination as a country that ensures an adequate level of protection as provided under the UK General Data Protection Regulation, or that appropriate safeguards such as standard contractual clauses are provided concerning the protection of your Personal Information.

    You can obtain more details on the protections given to your Personal Information when it is transferred outside the EEA or the UK (including a copy of the standard contractual clauses that we have entered into with recipients of your Personal Information) by contacting us using our details provided in Section 7 below.

  • (5)We may entrust customers' Personal Information with authorized third parties. In all such cases, We shall select the recipient with great care from among those parties that have established a sufficient level of protection of the Personal Information and carry out necessary supervision or otherwise ensure, through a contract stipulating the level of protection to be observed, that the recipient manages the information properly.