Privacy Policy for Personal Data Subject to GDPR
THIS PRIVACY POLICY (THIS “Privacy Policy”) ONLY APPLIES TO PROCESSING OF PERSONAL DATA SUBJECT TO EU GENERAL DATA PROTECTION REGULATION No 2016/679 (THE “GDPR”).
1.Our Privacy Policy
The protection of your personal data is of great importance to SEIRYO ELECTRIC CORPORATION (“Company”, “we”, “our”, and “us”) . This Privacy Policy therefore intends to inform you about how Company, acting as data controller, collects and processes your personal data that you submit or disclose to us. We also act as data controller when we process your personal data received or obtained through third-parties. This Privacy Policy is applicable to the personal data of the European Economic Area (the “EEA”).
We encourage you to read this Privacy Policy carefully. If you do not wish your personal data to be used by us as set out in this Privacy Policy, please do not provide us with your personal data. Please note that in such a case, we may not be able to provide you with our services, you may not have access to and/or be able to use some features of the Website, and your customer experience may be impacted.
If you have any queries or comments relating to this Privacy Policy, please direct to Inquiries Concerning Personal Data Protection.
2.How Do We Use Personal Data?
We will always process your personal data based on one of the legal basis provided for in the GDPR (Articles 6 and 7). In addition, we will always process your sensitive personal data, for example, concerning your trade union membership, religious views, or health condition, in accordance with the special rules provided for in the GDPR (Articles 9 and 10).
We may collect and process your personal data for the purposes detailed below, which are required so that we can pursue our legitimate interests and provide you with adequate products and services:
・to offer you our products and services;
・to ensure business continuity;
・to manage our employees and processes and services related to their employment relationship;
・to provide, improve, and develop our products, services, and advertising;
・to inform you about our policies and terms;
・to promote safety and security;
・to use personal data for purposes such as business administration, data analysis, research, and audits;
・to ensure that content from our site is presented in the most effective manner for you;
・to notify you about changes to our products or services;
・to manage your account;
・to comply with our legal obligations, to enforce our legal rights or to protect rights of third parties.
We may also collect and process your personal data for the following purposes, based on the execution of our contractual relationship between you and us:
・to honor our obligations with employees, contractors, vendors and other natural persons providing us with their services.
Finally, subject to obtaining your express prior consent, we may also collect and process your personal data for the following purposes:
・to make marketing advertisements in relation to services;
・to provide you with information which we think it may be of your interest;
・to manage your subscription to the newsletter;
・to share your personal data with third-party partners who may send you marketing communications in relation to their products and services;
・for making business analysis;
・for any other purposed for which we wish to use your personal data that are not listed in this Privacy Policy.
Please be aware that you are entitled to withdraw your consent at any time, without affecting the lawfulness of processing based on your consent before withdrawal thereof.
We will process your data for specified, explicit and legitimate purposes, and will not further process the data in a way that is incompatible with those purposes. If we intend to process personal data originally collected for one purpose in order to attain other objectives or purposes, we will ensure that you are informed of this. We will keep your personal data as long as it is necessary for us to comply with our legal obligations, to ensure that we provide an adequate service, and to support its business activities (Article 5 and 25(2) GDPR).
We ensure that the personal data processed shall be limited to what is adequate and necessary in relation to the purposes for which they are processed.
3.What Types of Personal Data Do We Use?
For the purposes specified under this Privacy Policy, we need to collect categories of personal data that are necessary to achieve the purposes, as described above and further specified when such data is collected.
We can obtain such personal data directly from you when you decide to communicate such data to us. When such personal data is provided by your electronic communication terminal equipment or your Internet browser, we can obtain that indirectly from you. We ensure that the personal data processed is adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.
4.Sharing Personal Data
We may share personal data with our group entities and with third-parties in accordance with the GDPR. Where we share personal data with a data processor, we will put the appropriate legal framework in place in order to cover data transfer and processing (Articles 26, 28 and 29 of the GDPR). Furthermore, where we share personal data with any entity outside the EEA, we will put appropriate legal frameworks in place, notably controller-to-controller (2004/915/EC) and controller-to-processor (2010/87/EU) Standard Contract Clauses approved by the European Commission, in order to cover such transfers (Chapter 5 of the GDPR).
Collaborative Partners
Subject to the your prior consent, your personal data may be transferred to, stored, and further processed by collaborative partners that work with us to provide our products and services or help us market to you.
Service Providers
We share your personal data with external experts (natural or legal person) such as lawyers or accountants, which provide services on our behalf, such as hosting, maintenance, support services, email services, marketing, auditing, fulfilling your orders, processing payments, data analytics, providing customer service, and conducting customer research and satisfaction surveys.
Corporate Affiliates and Corporate Reorganisations
We may share your personal data with all Company’s affiliates. In the event of a merger, reorganization, acquisition, joint venture, assignment, spin-off, transfer, or sale or disposition of all or any portion of our business, including in connection with any bankruptcy or similar proceedings, we may transfer any and all personal data to the relevant third party.
Legal Compliance and Security
It may be necessary for us – by law, legal process, litigation, and/or requests from public and governmental authorities within or outside your country of residence – to disclose your personal data. We may also disclose your personal data if we determine that, due to purposes of national security, law enforcement, or other issues of public importance, the disclosure is necessary or appropriate.
We may also disclose your personal data if we determine in good faith that disclosure is reasonably necessary to protect our rights and pursue available remedies, enforce our terms and conditions, investigate fraud, or protect our operations or users.
Data Transfers
The above disclosures may involve transferring your personal data out of the EEA, including the countries or areas where the Company Group locates. Such transfer may take place in order to ensure the provision of services by vendors and service providers to the Company Group entities, and the sharing of useful information within the Company Group. For each of these transfers, we make sure that we provide an adequate level of protection to the data transferred, in particular by entering into standard contract clauses as defined by the European Commission decisions 2001/497/EC, 2002/16/EC, 2004/915/EC and 2010/87/EU, or by any standard data protection clauses adopted by the European Commission pursuant to Article 46(2)(c) of the GDPR.
We will not use your personal data for online marketing purposes unless you have expressly consented to such use of your personal data.
5.Our Records of Data Processes
We handle records of all processing of personal data in accordance with the obligations established by the GDPR (Article 30), both where we might act as a controller or as a processor. In these records, we reflect all the information necessary in order to comply with the GDPR and cooperate with the supervisory authorities as required (Article 31).
6.Security Measure
We process your personal data in a manner that ensures their appropriate security, including protection against unauthorized or unlawful processing, accidental loss, destruction or damage. We use appropriate technical or organisational measures to achieve this level of protection (Article 25(1) and 32 GDPR).
We will retain your personal information for as long as it is necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.
7.Notification of Data Breaches to the Competent Supervisory Authorities
In case of breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed, we have the mechanisms and policies in place in order to identify it and assess it promptly. Depending on the outcome of our assessment, we will make the requisite notifications to the supervisory authorities and communications to the affected data subjects, which might include you (Articles 33 and 34 GDPR).
8.Processing Likely to result in high risk to your rights and freedoms
We have mechanisms and policies in place in order to identify data processing activities that may cause (or bring) high risk to your rights and freedoms (Article 35 of the GDPR). If any such data processing activity is identified, we will assess it internally and either stop it or ensure that the processing is in conformity with the GDPR or that appropriate technical and organisational safeguards are in place in order to proceed with it.
In case of doubt, we will contact the competent Data Protection Supervisory Authority in order to obtain their advice and recommendations (Article 36 GDPR).
9.Your Rights
You may have the following rights regarding personal data collected and processed by us.
-Information regarding your data processing: You may have the right to obtain from us all the requisite information regarding our data processing activities that concern you (Articles 13 and 14 GDPR).
-Access to personal data: You may have the right to obtain from us confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, access to the personal data and certain related information (Article 15 GDPR).
-Rectification or erasure of personal data: You may have the right to obtain from us the rectification of inaccurate personal data concerning you without undue delay, and to complete any incomplete personal data (Article 15 GDPR). You may also have the right to obtain from us the erasure of personal data concerning you without undue delay, when certain legal conditions apply (Article 17 GDPR).
-Restriction on processing of personal data: You may have the right to obtain from us the restriction of processing of personal data, when certain legal conditions apply (Article 18 GDPR).
-Object to processing of personal data: You may have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you, when certain legal conditions apply (Article 21 GDPR).
-Data portability of personal data: You may have the right to receive your personal data in a structured, commonly used and machine-readable format, and have the right to transmit those data to another controller without our hindrance, when certain conditions apply (Article 20 GDPR).
Not to be subject to automated decision-making: You may have the right not to be subject to automated decision-making (including profiling) based on the processing of your personal data, insofar as this produces legal or similar have effects on you, when certain conditions apply (Article 22 GDPR).
If you are not satisfied with the way in which we have proceeded with any request, or if you have any complaint regarding the way in which we process your personal data, you may lodge a complaint with a Data Protection Supervisory Authority.
10.Children
Our services are intended for adult customers. Thus, we do not knowingly collect and process information on children under sixteen (16). If we discover that we have collected and processed the personal data of a child under sixteen (16), or the equivalent minimum age depending on the concerned jurisdiction, we will take steps to delete the information as soon as possible.
11.About Cookies and Other Similar Technologies
We use cookies on the Website with a view to increasing the usability. When you re-visit the Website cookies are used for user tracking, re-targeting advertisement, affiliate advertising and retaining login information of registered users, users can view this Website more conveniently.
A cookie is an information used to transmit information from the Website to your browser. When you, as a customer or other visitor, visit this Website again, the cookie helps you to use the Website more conveniently and is stored in your personal computers/devices.
Furthermore, the stored information does not include information such as your name, your residential address, your phone number and your email address which can be used to identify an individual.
Cookie does not also have negative effects on your computers/devices.
Cookie information that is collected from customers and other visitors will be transmitted to and stored in servers at Google LLC, Adobe Systems Incorporated and some other entities from our web servers.
We also obtain statistical data concerning access information such as the number of accesses and stay period for the Website from stored data by using Google Analytics service, Adobe Analytics that is provided by Adobe Systems Incorporated and some other services.
It is possible to block cookie, if you, as a customer or other visitor, change the setting of your web-browser. In such cases, you will not have a trouble viewing the Website except for some functions.
Please make contact with the developer and/or distributor of the web-browser that you are using for its setting procedure.
12.Links to Other Sites
We may propose hypertext links from the Website to third-party websites or Internet sources. We do not control and cannot be held liable for third parties’ privacy practices and content. Please read carefully their privacy policies to find out how they collect and process your personal data.
13.Updates to Privacy Policy
We may change this Privacy Policy from time to time. Any changes to this Privacy Policy will become effective upon posting of the revised Privacy Policy via the Website. If we make changes which we believe are significant, we will inform you through the Website to the extent possible and seek for your consent where applicable.
14.Contact
For any questions or requests relating to this Privacy Policy, please contact us as follows:
【Seiryo Electric Company】
Name: SEIRYO ELECTRIC CORPORATION
Attn:Personal Data Protection
JRE Dojima Tower, 2-4-27, Dojima, Kita-ku, Osaka-shi, Osaka, 530-0003 Japan
Phone: +81-6-6345-4160
E-mail:sec.privacy@seiryodenki.co.jp
【Authorized personal information protection organizations】
Name: JIPDEC
Attn: Personal information protection complaint consultation room
Roppongi First Building, 9-9 Roppongi 1-chome,Minato-ku Tokyo, 106-0032 Japan
Phone: +81-3-5860-7565, +81-120-700-779
Supplementary Provisions:
This Program is established and effective on 1 December, 2018. If the related clauses of the GDPR is amended, the new provisions shall be replaced and applied accordingly.
SEIRYO ELECTRIC CORPORATION (“we”, “our”, and “us”) will control submitted personal information(the “personal information”) appropriately according to our
Privacy Policy.
We may process the personal information for the purposes detailed below:
・to offer you our products and services;
・to ensure business continuity;
・to provide, improve, and develop our products, services, and advertising;
・to inform you about our policies and terms;
・to promote safety and security;
・to use personal information for purposes such as business administration, data analysis, research, and audits;
・to ensure that content from our site is presented in the most effective manner for you;
・to notify you about changes to our products or services;
・to manage your account;
・to comply with our legal obligations, to enforce our legal rights or to protect rights of third parties.