Privacy policy

Privacy Policy

EPOQ Co., Ltd. (hereinafter referred to as "the Company") will comply with the Act on the Protection of Personal Information (hereinafter referred to as the "Personal Information Protection Act") and related orders, guidelines, etc. (hereinafter referred to as "laws and regulations") and properly manage and use personal information as follows. This privacy policy is applied in conjunction with the privacy policy, terms of use, and guidelines, etc. (hereinafter referred to as "service regulations, etc.") for each service. In the event of a conflict between this privacy policy and the contents of the service regulations, the contents of the service regulations shall take precedence.

  1. Acquisition of Personal Information
    When acquiring personal information, the Company will announce or notify the purpose of use and acquire it within the scope necessary for achieving the purpose of use through lawful and fair means. The personal information we acquire refers to the personal information provided by the customer (defined as personal information in Article 2 of the Personal Information Protection Act, including personal information contained in voice, images, and videos) and the personal information we acquire or are provided by third parties.

  2. Handling of Personal Information

  1. Use within the purpose of use The Company will not use the personal information acquired in accordance with the provisions of 1. above beyond the scope of the purpose of use without the consent of the customer who provided the personal information. The Company respects the rights of customers regarding personal information and will sincerely respond to requests from customers for disclosure, correction, suspension of use, or suspension of provision of personal information in accordance with the provisions of laws and regulations. The personal information we acquire will be used for the following purposes.
  1. To provide guidance on products and services handled by the Company.
  2. To analyze information on user service usage, etc., for product and service planning, research and development, quality improvement, and customer satisfaction improvement through customer surveys.
  3. To perform necessary operations for responding to inquiries from customers and implementing prompt services.
  4. To respond to provisions of laws and ordinances or notifications and guidance from administrative authorities.
  5. Other purposes of use announced or notified when acquiring personal information.
  1. Proper use and acquisition of personal information The Company will not use the personal information acquired in accordance with the provisions of 1. above in a manner that may promote or induce illegal or improper acts. Furthermore, we will not acquire personal information properly and will not acquire it through deception or other fraudulent means.

  2. Security Management Measures for Personal Information The Company will take appropriate organizational, physical, and technical security management measures to prevent unauthorized access to personal information, as well as loss, destruction, alteration, and leakage of personal information, and other security management measures for personal information, by establishing a basic policy and organizing rules for handling personal data. We will also take appropriate human security management measures, such as promoting education and awareness activities for officers and employees who handle personal information. In addition, when handling personal data in foreign countries, we will take appropriate security management measures after grasping the system for protecting personal information in the relevant foreign country.

Establishment of basic policy

Establish this privacy policy as a basic policy for ensuring the proper handling of personal data, including "compliance with related laws and guidelines," and "window for inquiries and complaint handling."

Organizing rules for handling personal data

Establish internal rules for handling methods, responsible persons, and their duties for each stage of acquisition, use, storage, provision, deletion, and disposal.

Organizational security management measures

 

  1. Appoint a person in charge of handling personal data, clarify the scope of personal data handled by employees and the range of personal data handled by the employees, and establish a reporting and communication system to the person in charge in case of any facts or signs of violation of laws and internal rules.

  2. Regularly conduct self-inspections on the handling status of personal data.

Human Security Management Measures

Provide regular training to employees on matters to be aware of in handling personal data.

Physical Security Management Measures 

Implement measures to prevent theft or loss of equipment, electronic media, and documents handling personal data, and when carrying such equipment and electronic media, including moving within the business premises, implement measures to prevent personal data from being easily identified.

 

Technical Security Management Measures
  1. Implement access control to limit the scope of responsible persons and personal information databases handled.

  2. Introduce mechanisms to protect information systems handling personal data from unauthorized access or malicious software from the outside.

Understanding the External Environment

Implement safety management measures after understanding the system for protecting personal information in Shopify, where personal data is stored.

 

 

  1. Provision of personal information to third parties We will not provide personal information obtained in accordance with the provisions of the above 1. to third parties without the consent of the person who is the subject of the personal information (hereinafter referred to as the "Individual"), except as permitted by the Personal Information Protection Law and other related laws and regulations.

  2. Management of contractors handling personal information We may provide personal information obtained in accordance with the provisions of the above 1. to contractors within the scope necessary to achieve the publicly announced or notified purpose of use. In this case, we will also demand proper handling of the provided personal information from the contractors and appropriately manage it.

  3. Limitation on the use of personal information We will not handle personal information beyond the scope necessary to achieve the purpose of use without obtaining the individual's prior consent. Even in cases where personal information is acquired due to a merger or other reasons, we will not handle it beyond the scope of the purpose of use before the merger without obtaining the individual's prior consent. However, this does not apply in the following cases:

(1) When required by law

(2) When it is necessary to protect the life, body, or property of a person and it is difficult to obtain the individual's consent

(3) When it is particularly necessary to improve public health or promote the healthy development of children and it is difficult to obtain the individual's consent

(4) When it is necessary to cooperate with a national institution or local public entity or a person entrusted by them in performing the affairs prescribed by laws and regulations, and obtaining the individual's consent may hinder the performance of the affairs

(5) When providing personal data to academic research institutions, etc., and it is necessary for the academic research institution, etc., to handle the personal data for academic research purposes (including cases where part of the purpose of handling the personal data is for academic research purposes, excluding cases where there is a risk of unfairly infringing on the rights and interests of individuals)

 

  1. Change of purpose of use of personal information When we change the purpose of use of personal information, we will not exceed the reasonably recognized scope that has relevance to the purpose of use before the change, and we will notify the individual or announce the changed purpose of use.

    1. Disclosure of Personal Information When we receive a request from an individual for the disclosure of personal information, records related to the provision of personal information to third parties, and records of confirmation when providing personal information to third parties, we will disclose the information without delay, in accordance with laws and regulations. However, we may not disclose all or part of the information in cases where doing so would fall under any of the following situations, and if we decide not to disclose the information, we will notify the individual without delay.

    (1) Cases where there is a risk of harming the life, body, property or other rights and interests of the individual or a third party

    (2) Cases where there is a risk of causing significant hindrance to the proper execution of our business

    (3) Cases where doing so would violate other laws. Please note that we do not, in principle, disclose information other than personal information, such as access logs.

    1. Correction of Personal Information If we receive a request from an individual for the correction, addition, or deletion of personal information (hereinafter referred to as "correction, etc.") for the reason that the information is not true, we will, unless otherwise provided for by other laws and regulations, conduct the necessary investigation without delay within the scope necessary for the achievement of the purpose of use, and based on the results of the investigation, correct, etc. the content of the personal information, and notify the individual of the fact.

    2. Suspension of Use of Personal Information, etc. If we receive a request from an individual to stop or delete the use of their personal information (hereinafter referred to as "suspension of use, etc.") in accordance with the provisions of the Personal Information Protection Law for the following reasons: (1) the individual's personal information is being used in a manner that goes beyond the scope of the publicly announced purpose of use or is being used in a manner that is likely to promote, facilitate or induce illegal or improper conduct; (2) the individual's personal information is being provided to a third party without their consent for the reason that the personal information is being used in a manner that is likely to promote, facilitate or induce illegal or improper conduct; or (3) the individual's personal information is no longer necessary for us to use, and a situation as specified in the main clause of Article 26, Paragraph 1 of the Personal Information Protection Law has occurred in relation to the individual's personal information, or there is a risk of harming the individual's rights or legitimate interests due to the handling of their personal information, we will, if it is found that there is a reason for the request, confirm that the request is from the individual themselves, and without delay, suspend the use of the personal information, etc. or suspend the provision, and notify the individual of the fact. However, this does not apply in cases where we are not obligated to suspend the use, etc. or suspend the provision under the Personal Information Protection Law or other laws and regulations.

    3. Handling of Personal-Related Information If it is anticipated that a third party will acquire personal-related information (meaning what is defined in Article 2, Paragraph 7 of the Personal Information Protection Law and limited to what constitutes a personal-related information database, etc. as defined in Article 16, Paragraph 7 of the same law; the same shall apply hereinafter) as personal data, we will not provide the personal-related information to the third party unless otherwise permitted by the Personal Information Protection Law or other related laws and regulations.

    4. Collection and Use of Cookies and Behavioral History
      We may use cookies and other identifiers (hereinafter referred to as "cookies, etc.") to provide better services to our customers. These do not contain personally identifiable information such as name or date of birth and do not infringe on your privacy.

      Furthermore, we use various access analysis tools provided by third parties, which also utilize cookies to automatically collect visitor behavioral information. The use of cookies by these third-party companies is conducted in accordance with their privacy policies and will not be used for purposes other than their intended use.

      If you do not wish to have information collected through cookies, you can change the settings in the browser you use. For information on how to check and disable these settings, please visit the official support page of your browser. For the privacy policies of the various tools and services provided by the third-party companies we use, please visit their respective websites.

      Customers can also disable the use of cookies for online advertising by visiting the opt-out (delivery stop) pages listed on the sites of the following third-party companies:

      (Shopify Japan Inc.)
      Privacy Policy

      (Google Inc.)
      Privacy Policy
      Google Ad Settings
      Google Analytics

      (Facebook)
      Ad Settings

      (LINE Corporation)
      Opt-out page

      Use of SSL

      We use SSL (Secure Sockets Layer) technology on our website to ensure security when entering personal information, preventing interception, interference, or tampering of the information entered by the customer.

      * SSL is a function that encrypts information to prevent eavesdropping and data tampering during transmission. By using SSL, it is possible to send information more securely.

      9. Personal Information Handling Operator and Inquiries
      The personal information handling operator is as follows:

      Address: 4-17 Sakuragaoka-cho, Shibuya-ku, Tokyo 150-0031, Portal Apartment & Art Point 1001
      Name: EPOQ Corporation
      Representative Director: Takaaki Itagaki

      For inquiries regarding our handling of personal information, please contact the following:
      EPOQ Corporation
      4-17 Sakuragaoka-cho, Shibuya-ku, Tokyo 150-0031, Portal Apartment & Art Point 1001
      support@oaofootwear.com

      We accept requests, questions, and various inquiries by email.

      Revised on April 1, 2022