The Tokyo Festival Executive Committee (the “Committee”) recognizes that it has an important obligation to provide appropriate protection for the personal information (including Individual Number and other Specific Personal Information) of visitors and other related parties. The Committee applies the following policies in striving to protect personal information.
1. Compliance with Relevant Laws and Ordinances
The Committee will comply with the Act on the Use of Numbers to Identify a Specific Individual in Administrative Procedures (the “Numbers Act”) and the Act on the Protection of Personal Information (the “Personal Information Protection Act”), as well as other government ordinances based upon them.
2. Collection of Personal Information
The Committee collects personal information through fair and lawful methods after clarifying the administrative objective for handling personal information and, in principle, after providing notice or disclosure in advance. When personal information is collected it will, in principle, be collected directly from the individual concerned.
3. Use of Personal Information
The Committee uses personal information within the scope of the purpose of use indicated at the time the information is collected and within the limits necessary for carrying out its business.
In the event that the handling of personal information is entrusted to a third party, the Committee will exercise all necessary and appropriate supervision to ensure the secure administration of personal information, entering into a contract with such third party to maintain confidentiality and clarifying where responsibility lies.
4. Provision of Personal Information to Third Parties
The Committee will not, in principle, provide personal information to third parties other than in the situations prescribed below:
○When the visitor has provided consent; or
○As provided in the Numbers Act, the Personal Information Protection Act, or other ordinance.
5. Management of Personal Information
The Committee will maintain the accuracy of personal information, managing it securely and in accordance with laws and ordinances.
In order to prevent leakage, loss, or degradation of personal information, personal computers used by staff will be equipped with firewalls, and appropriate, effective information security measures will be implemented to prevent computer viruses.
6. Disclosure, Correction, Suspension of Use, and Deletion of Personal Information
The Committee will respond promptly in the event that visitors and other related parties request the disclosure, correction, suspension of use, or deletion of their own personal information.
7. Organization and Structure
The Committee will appoint its Secretary General as Personal Information Protection Manager and Specific Personal Information Protection Manager, and practice secure management of personal information.
8. Establishment, Implementation, and Improvement of Personal Information Protection-Related Regulations
The Committee, in order to drive the policies described above, will establish personal information-related regulations, ensure that officers, staff and other related personnel are made aware of and implement them, and make improvements as necessary.