These Policy Guidelines shall apply to all personal information handled by the Company.
2. Legal compliance
The Group shall comply with laws, governmental ordinances, national guidelines and other regulations regarding the handling of personal information, provided that those regulations are established in Japan.
3. Internal structures
The Group has put in place internal structures to facilitate the management of personal information, including by forming a department to oversee the protection of personal information and by assigning supervisors responsible for managing personal information in each of its departments.
4. Use of personal information
Whenever using personal information, the Group shall define the purpose of use of personal information and restrict the use of information to the scope necessary to achieve that purpose.
5. Acquisition of personal information
The Group shall acquire personal information using lawful and appropriate means.
The Group shall take appropriate measures to ensure that the personal information in its possession is accurate and up-to-date.
The Group shall take necessary and appropriate measures to ensure the integrity of the personal information in its possession so as to prevent unauthorized access, loss, destruction, alteration, improper disclosure, or other misuse.
8. Supervision of subcontractors
When outsourcing the handling of personal information, the Group shall implement the necessary and appropriate supervision to ensure contractors manage personal information safely.
9. Disclosure and modification of personal information
The Group shall accommodate requests by individuals to access or modify their personal information in an appropriate manner and in accordance with predetermined procedures.
10. Inquiries concerning personal information
Inquiries concerning personal information shall be accepted and processed by the following contact point.
Group Planning Division, Public Relations Dept. Hankyu Hanshin Holdings, Inc.
11. Ongoing improvements
The Group shall conduct periodic audits and review and improve its internal guidelines and structures on an ongoing basis to ensure that personal information is appropriately protected.