Protection policy for personal information and specific personal information

Protection policy for personal information and specific personal information

As a corporation which creates added value for credit card payment, the Company aspires to contribute to society by establishing an infrastructure for payment processing in Japan, providing businesses with secure, convenient, and comprehensive payment processing services including credit cards, convenience store payment, e-money, Pay-easy, etc., and bringing satisfaction to consumers. To achieve this mission, the Company views the protection of personal information as the most important aspect of our corporate activities. We recognize the appropriate handling and safe management of information as our most important social responsibility.

Therefore, in addition to declaring policies related to the protection of personal information (*) both inside and outside the Company, we will continue to educate employees regarding the importance of personal information. Furthermore, we will appoint supervisors who are responsible for protecting personal information at each organization which handles personal information, and will manage personal information appropriately.

In addition to protecting personal information, the Company conducts appropriate handling of specific personal information (*) which is subject to particularly strict management requirements. Moreover, unless otherwise noted, specific personal information is not included in personal information.

  • 1.The Company shall acquire personal information and specific personal information through appropriate and fair methods, and shall not handle said information outside the scope of purpose of use. Except for when required by law, the Company shall not provide the acquired personal information to a third party without agreement from the person in question. Furthermore, the Company shall construct and maintain measures required to prevent use for other than the intended purpose.
  • 2.The Company engages in appropriate handling of specific personal information, etc. by complying with the “Personal Information Protection Law” and other Japanese laws, government guidelines and standards pertaining to the protection of personal information, as well as the “Act on the Use of Numbers to Identify a Specific Individual in Administrative Procedures” (commonly known as the “My Number Act”), “Guidelines for Appropriately Handling of Specific Personal Information ’Business Edition,’” the “Act on the Protection of Personal Information,” and related Cabinet orders, ministerial ordinances, and guidelines.
  • 3.In order to prevent leakage, loss, damage, and other risks for personal information, the Company defines internal rules and responsibility-taking systems, and constructs rational/appropriate security measures. The Company also periodically inspects the content of security measures and corrects any defects. Furthermore, in order to ensure appropriate handling of specific personal information, etc., the Company shall manage security measures in accordance with internal rules.
  • 4.If the Company receives a complaint or inquiry regarding personal information (including specific personal information) and management systems for protection of personal information, the following section shall respond quickly and appropriately.
  • 5.In order to execute this policy, the Company shall establish management systems for protection of personal information, raise awareness for said systems among Company executives and other related parties, and implement, maintain, and continuously improve said systems.
  • 6.This policy is subject to change at any time without prior notice due to changes in business activities of the Company, revision of laws/regulations, etc.

■ Section for responding to complaints, inquiries, and questions on the policy for protection of personal information

Name Personal Information Inquiry Section, GMO Payment Gateway, Inc.
Email privacy@gmo-pg.com

Created on October 1, 2002
Updated on January 27, 2016
GMO Payment Gateway, Inc.
Issei Ainoura, President & Representative Director

※”Personal information”
"Personal information" means that information relating to a living individual which falls under any of each following item:
・those containing a name, date of birth, or other descriptions etc., whereby a specific individual can be identified (including those which can be readily collated with other information and thereby identify a specific individual) ・those containing an individual identification code.

※”Individual identification code”
An “individual identification code” means those prescribed by cabinet order which are any character, letter, number, symbol or other codes falling under any of each following item.
those able to identify a specific individual such as fingerprint data and facial-recognition data, that are a character, letter, number, symbol or other codes into which a bodily partial feature of the specific individual has been converted in order to be provided for use by computers.
those character, letter, number, symbol or other codes such as passport number and driver’s license number, or which are stated or electromagnetically recorded in a card or other document issued to an individual so as to be able to identify a specific user or purchaser, or recipient of issuance by having made the said codes differently assigned or, stated or recoded for the said user or purchaser, or recipient of issuance.

※”Specific personal information”
Personal information which includes the Individual Number.

※”Individual Number”
A 12-digit number which is assigned to a resident by a municipality as a number for identifying a certain individual. Commonly known as “My Number.”

※”Management systems for protection of personal information”
A series of mechanisms for protection of personal information, including formulating policies, developing systems, planning, implementation, inspection and revision.