- Asahi Net Personal Information Protection Policy
- Handling of Personal Information
- Information Security
- The details of the procedure for the Disclosure, etc. and contact desk
- About cookies
Asahi Net Personal Information Protection Policy
Asahi Net, Inc. (hereinafter referred to as the "Company") has established the following Personal Information Protection Policy to handle the personal information of our large number of customers both accurately and safely, recognizing that this is an important management task in providing a customer-oriented service. In addition, when providing telecommunications services, etc., we believe that the adequate protection of personal information is a social responsibility, thus have established the following Personal Information Protection Policy and shall continuously strive towards the proper handling of personal information.
- The Company shall handle the personal information of our customers only within the scope of the purpose of use and not for other purposes, unless prior consent has been obtained from the customer or unless otherwise stipulated by laws and regulations. Necessary measures will be taken for this purpose.
- The Company, upon handling of personal information (information with which a specific individual can be identified. The same shall apply hereinafter) vows to comply with the Act on the Protection of Personal Information and other relevant laws and regulations relating to personal information protection, and to strictly comply with this Policy.
- The Company shall endeavor to keep personal data accurate and up-to-date within the scope of the purpose of use, and take necessary and appropriate measures to securely control personal information, and supervise employees and subcontractors.
- The Company shall deal quickly and appropriately and in accordance with laws and regulations, with inquiries or complaints received by the Company's representatives from customers regarding our handling of personal information, and with the disclosure, correction and deletion of the acquired personal information.
- The Company shall take all necessary corrective and preventive measures to safely manage personal information, and will strive to prevent unauthorized access, loss, destruction, alteration and leakage to or of personal information.
- The Company, for the purpose of proper handling of the personal information acquired, shall strive to continuously improve and strengthen its Personal Information Protection Management System, which shall include the reviewing of this Policy, by enforcing the appointment of a person in charge of administering personal information, the development of internal regulations, the education and supervision of employees, and the implementation of internal auditing.
This Policy shall be effective as of March 25, 2005.
The revised policy shall be effective as of May 1, 2015.
The revised policy shall be effective as of December 25, 2015.
Asahi Net, Inc.
President, Jiro Hijikata
Consultation desk for matters related to the handling of personal information:
Personal Information Protection Office
Telephone: 03-3541-3892 (10am to 6pm)
* This is a translation of the original Asahi Net Personal Information Protection Policy in Japanese. If there is any conflict between the original and the translation, the original shall prevail.
Japanese-language version of the Asahi Net Personal Information Protection Policy.
Handling of Personal Information
1. Company's name and Personal Information Protection Administrator
The Company name: Asahi Net, Inc.
Personal Information Protection Administrator: Executive Director, Satoshi Mizokami
2. Purpose of use
- Asahi Net, Inc. (hereinafter referred to as "the Company") shall acquire personal information appropriately and fairly in any manner including oral, written and electromagnetic records, audio recordings, video recordings and other means. The acquired personal information shall be handled appropriately within the scope necessary for the following purpose of use. In addition to the following purpose of use, the Company may separately specify the purpose of use.
Purpose of use | |
---|---|
(i) Personal information of customers |
|
(ii) Personal information of business partners |
|
(iii) Personal information provided by business partners |
|
(iv) Personal information of questionnaire answerers or participant of events |
|
(v) Personal information of individuals who made an inquiry or a visit to the Company |
|
(vi) Personal information of shareholder |
|
(vii) Personal information of job applicants of the Company |
|
(viii) Personal information of the Company's employee |
|
- The Company shall acquire credit card information (name of the credit card holder, credit card number, expiration date, etc.) of the customer, of which purpose of use, the acquirer, the recipient and the storage period of the information shall be as the following. The company complies with the non-retention of credit card data
- Purpose of use: To settle fees of the service, etc. which the Company provides.
- Acquirer: Asahi Net, Inc.
- Recipient: Credit card companies of which credit cards are used for settlement of fees, and settlement service support companies.
- Storage period: Period determined as appropriate by the Company.
3. Third party provision
The Company will not provide personal information which the Company handles to a third party unless prior consent is obtained from the person. However, in the following circumstances the Company may provide personal information to a third party without the customer's prior consent.
- The Company may provide personal information to telecommunication business operators such as NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION or NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION.
- The Company, within the scope required to perform the aforementioned purpose of use, may provide or disclose to a third party, statistics information, processed in formats with which a specific individual cannot be identified.
- The Company, in any of the following events, and while considering the rights of the person, may provide personal information to a third party.
- Cases in which the handling of personal information is based on laws and regulations.
- Cases in which the handling of personal information is necessary for the protection of the life, body, or property of an individual and in which it is difficult to obtain the consent of the person.
- Cases in which the handling of personal information is specially necessary for improving public health or promoting the sound growth of children and in which it is difficult to obtain the consent of the person.
- Cases in which the handling of personal information is necessary for cooperating with a state organ, a local government, or an individual or a business operator entrusted by either of the former two in executing the affairs prescribed by laws and regulations and in which obtaining the consent of the person is likely to impede the execution of the affairs concerned.
4. Appropriate control of personal information
Other than the formulation of basic policies based on the Asahi Net Personal Information Protection Policy, to prevent unauthorized access to personal information and its leakage/loss/damage, and to safely control it through other means, the Company shall make the effort by taking the following necessary and appropriate measures.
- Consolidation of internal regulations
The Company shall formulate the regulations regarding how to handle personal information, assignment of responsible individuals/personnel/duties, and will implement a continuous improvement. - Institutional security control measures
The Company shall assign a responsible individual who manages the handling of personal information to supervise employees, and consolidate a communication structure which enables a prompt escalation of infringement against laws and regulations to the assigned manager. The Company shall also implement self-inspections of its handling of personal information as well as internal audits and third-party oriented audits on a regular basis. - Technical security control measures
The Company shall take measures for: controlling and monitoring access to personal information, prevention of unauthorized access from the outside, etc. - Physical security control measures
The Company shall take measures such as: locking, entrance/exit management, theft prevention of device, digital media, etc., restriction on take out, etc. - Human security control measures
The Company shall take measures to implement educational training on a regular basis for employees regarding the security control of personal information.
5. Subcontractor provision
The Company, within the scope required to perform the aforementioned purpose of use, may provide personal information which the Company handles to a subcontractor of the Company.
6. Procedures responding to request for the Disclosure, etc. and contact desk
Except when personal information is entrusted from business operators through consignment business, in the event the person or the agent of the person requests to notify the purpose of use, to disclose, to correct, add or delete, to discontinue the utilization, to erase, or to discontinue its provision to a third party of personal information (hereinafter collectively referred to as "the Disclosure, etc."), the Company shall handle reasonably, in response to such request and in accordance to the stipulations set forth in the Act on the Protection of Personal Information.
For more information, the details of the procedure for the Disclosure, etc. and contact desk.
- Please note that request for the Disclosure, etc. is only accepted in Japanese.
7. Voluntary nature of provision of the customer's personal information and outcome of not providing the personal information
When using Company's services, it is required to provide personal information to the Company with consent of this Handling of Personal Information. If a user fails to provide the Company certain information, such user may not be able to use whole or part of Company's services and the Company may not be able to answer an inquiry.
8. Acquisition of personal information by methods that are not easily recognized by individuals
The Company, within the scope of providing Company's service, ensuring security, improving usability, distributing advertisement, etc., shall acquire information such as device information or location information by using cookies, etc. Information with which itself alone cannot identify a specific individual shall not be handled as personal information. However, in the event that such information is collated with other information and thereby can identify a specific individual, it shall be handled appropriately in accordance with this Handling of Personal Information.
9. Consultation desk for handling of personal information
- Asahi Net, Inc.
Please contact by postal mail or by phone. Personal Information Protection Office
Asahi Net, Inc.
KABUKIZA TOWER 21F, Ginza 4-12-15 Chuo-ku,
Tokyo 104-0061
Tel: 03-3541-3892 (Weekdays, 10:00 a.m.- 6:00p.m.) - Authorized personal information protection organization to which the Company belongs. (Certified by Ministry of Internal Affairs and Communications.) Telecommunications Personal Information Protection Promotion Center
Japan Data Communications Association
Tel: 03-5907-3803 (Weekdays, 10:00 a.m.-12:00 p.m., 1:00 p.m.-3:00 p.m.)
https://www.dekyo.or.jp/kojinjyoho/ - This is a translation of the original Handling of Personal Information in Japanese. If there is any conflict between the original and the translation, the original shall prevail.
- Please note that the Company is not targeting people or consumers within the European Union, California State or Virginia State, United States, nor any other applicable countries.
10. Revision
This Handling of Personal Information may be revised partially or fully by the Company. In case revision is made, it will be published through the Company's website, etc.
Supplementary Provision
This policy shall be effective of August 15, 2013
The revised policy shall be effective of December 25, 2015
The revised policy shall be effective of January 27, 2016
The revised policy shall be effective of May 27, 2016
The revised policy shall be effective of December 4, 2017
The revised policy shall be effective of March 31, 2020
The revised policy shall be effective of March 31, 2022
Information Security
Asahi Net Inc. has obtained ISO/IEC 27001:2013 certification for Information Security Management System (ISMS), which signifies our concerted efforts in managing information security. We will continue to take steps to ensure that those using our Internet connection services and related services may do so securely and with peace of mind.
Privacy Mark
Certification number | 21000821(06) |
---|---|
Date obtained | December 13, 2013 |
ISO/IEC 27001:2013 Certification
Asahi Net Inc. has obtained ISO/IEC 27001:2013 certification for Information Security Management System (ISMS).
Certification obtained | ISO/IEC 27001:2013 JIS Q 27001:2014 |
---|---|
Accreditation body | UKAS (United Kingdom Accreditation Service) JIPDEC (Japan Information Processing Development Corporation) |
Certificate registration number | JQA-IM0890 |
Registration date | August 6, 2010 |
Revision date | June 29, 2018 |
Certification body | JQA (Japan Quality Assurance Organization) |
Internet Connection Service Safety & Security
Asahi Net Inc., has passed the licensing examination of the Internet Connection Service Safety & Security Promotion Association and therefore can use the Safe Security ISP mark.
These seven items were tested for the licensing examination.
- [ Items ]
-
- The establishment of a security policy and introduction of an audit system.
- The security level of systems.
- The establishment of a system to manage times when problems occur.
- The maintenance and announcement of user-oriented contract articles, etc.
- The maintenance of a system to manage users.
- The dissemination of knowledge to users.
- The actions taken to protect personal information.
The details of the procedure for the Disclosure, etc. and contact desk
- Where to file a request for the Disclosure, etc.
To request for the Disclosure, etc., please send a written form prescribed by the Company with required documents attached to the following address by post. On the envelope, please write Request form for the Disclosure, etc. in red letters. Personal Information Protection Office
Asahi Net, Inc.
KABUKIZA TOWER 21F, Ginza 4-12-15 Chuo-ku,
Tokyo 104-0061- Please note that request for the Disclosure, etc. is only accepted in Japanese.
- Documents to be submitted when requesting for the Disclosure, etc.
To request for the Disclosure, etc., download the following forms prescribed by the Company, fill in the forms as required, attach any one of the following documents for identification, and send it to the aforementioned address indicated in Where to file a request for the Disclosure, etc. by post.
If the current address of the person is different from the address of the person registered with the Company, the Company may call the telephone number indicated on the request form to verify identification of the person.- Request Form for Disclosure, Correction, Utilization Cease, or Deletion of Personal Information (only in Japanese), prescribed by the Company.
- Any one photocopy of: driver's license (the front and the back side), passport (the page with your picture on it and the page which has the indication of the owner), residence card or certificate of alien registration (the front and the back side), or health insurance certificate (the front and the back side).
- A certificate of residence (Should be within three months; the same applies to the following.)
- Residence certificate which has your individual number (My Number) indicated cannot be accepted.
- If the domicile of origin is indicated, please black out the relevant section before sending.
- When taking a copy of your health insurance certificate, please be sure to hide the insurance number, code/number, QR code (if printed) or please black out the relevant section before sending.
- Request for the Disclosure, etc. by agents
If the person requesting for the Disclosure, etc. is a statutory agent of a minor or an adult ward, or an agent to whom the person has delegated to request for the Disclosure, etc., please attach the documents listed in either the following (i) or (ii), in addition to the documents listed in the previous section.- When the requestor is a statutory agent
- Declaration form (only in Japanese) prescribed by the Company.
- A copy of the following documents to confirm the authority of statutory representation
- Statutory agent for minors: Family register certificate or certificate of residence which has the indication of the name of the minor and the statutory agent, and their relationship (both issued within the last three months). If the statutory agent has parental authority, a copy of the health insurance certificate of the statutory agent, in which the dependent family member is indicated, is also accepted.
- Statutory agent for adult ward: Certificate of registered information of adult guardianship.
- The following documents to verify the identification of the statutory agent
- Any copy of the statutory agent's: driver's license(the front and the back side), passport (the page with your picture on it and the page which has the indication of the owner), residence card or certificate of alien registration(the front and the back side), or health insurance certificate(the front and the back side). - 1 copy
- Certificate of residence (issued within the last three months) of the statutory agent. - 1 copy
- When the requestor is a privately appointed agent
- Letter of attorney (only in Japanese) as prescribed by the Company (affixed with a registered seal.)
- Seal registration certificate of the person (issued within the last three months; the certificate must be for the seal which is sealed in the Letter of attorney.)
- The following two documents to verify the identification of the privately appointed agent
- Any copy of the statutory agent's: driver's license(the front and the back side), passport (the page with your picture on it and the page which has the indication of the owner), residence card or certificate of alien registration(the front and the back side), or health insurance certificate(the front and the back side). - 1 copy
- Certificate of residence (issued within the last three months) of the statutory agent. - 1 copy
- When the requestor is a statutory agent
- Fee required to request for disclosure, and method of payment
To request for disclosure of personal information subject to disclosure or for notification of purpose of use of personal information, a fee of 1,500 yen (tax included) per request shall be charged. Please enclose a postal money order* equivalent to 1,500 yen with the request form.
In the event that additional costs incur from requests for special disclosure or special method of notification, etc., an additional fee considering such costs may be charged.
If the enclosed fee is not sufficient or if the fee is not enclosed, we shall notify the requestor accordingly. However, if the requestor fails to pay within a prescribed period, request for disclosure shall be regarded as not having been made. A fee that has been paid shall not be refunded.
- Postal money order for fixed small amount
- Please purchase a postal money order at savings account window of Japan Post Bank or Japan Post. A handling fee shall be charged for purchasing.
- Please leave the name and address of the designated payee (指定受取人住所氏名欄) blank on the postal money order.
- Postal money order for fixed small amount
- Method of reply to requests for the Disclosure, etc.
Reply shall be sent by postal mail or email to the address or email address indicated in the request form of the applicant. - Purpose of use of personal information acquired in relation to the request for the Disclosure, etc.
Personal information acquired in association with the request for the Disclosure, etc. shall be handled within the scope necessary to respond to request for the Disclosure, etc. Submitted documents shall be stored for two years after the request for the Disclosure, etc. has been replied, and shall be destroyed by the Company in a responsible manner. - Reason for non-disclosure
Information shall not be disclosed in any of the following circumstances. In the event the Company decides for non-disclosure, it shall notify the applicant of the decision with the reason for non-disclosure. Prescribed fee shall not be refunded even in the event the Company decides for non-disclosure.- When identification cannot be verified, such as when there is a discrepancy among the address indicated on the request form, the address indicated on the document for identification verification, and the address registered with the Company.
- When authority of representation cannot be confirmed for request made by an agent.
- When there is an insufficiency in the submitted request form and documents as prescribed by the Company.
- When the information for which disclosure is requested does not constitute personal information subject for disclosure (such as personal information entrusted from business operators through consignment business.)
- When there is a possibility of harming the person or third party's life, body, fortune or other rights and interests.
- When there is a possibility of seriously impeding the proper execution of the Company's businesses.
- When it violates other laws and regulations.
- When there is a possibility to solicit or induce unlawful act.
- When special procedures are stipulated by laws and regulations.
About cookies
- What are cookies?
"Cookie" is a small file of recognition tag (a text file) that is sent to your browser. Cookie is stored on your device through your browser when you access Company's website for the first time. When you access again, Company's website distinguish your cookie and recognize that you are accessing from the same device as before. - Purpose of use
The Company, by using cookies, may use the information acquired when you browse Company's websites, e-mails and information you entered on our websites collated with your device information, within the scope of the purpose of use stated as the following.- To improve usability and to support input when using the service of the Company.
- To conduct operations related to the provision of the Company's service or maintenance and support.
- To conduct questionnaire, marketing survey and analysis intended for the maintenance and improvement of the Company's service or for the planning and development of the Company's new service.
- To generate statistical data for business analysis and to use such analysis results.
- To distribute advertisement.
- Information acquired
By using cookies, the Company acquire access information and information you have entered as follows.- Information of web pages that you have accessed.
- Information relating to opening of e-mails.
- Information regarding websites' URL that you have accessed.
- Device information and location when you accessed Company's website.
- Registration information that you have entered when using Company's website.
- Keywords that you have entered to search information.
- Protection of Information
Information with which itself alone cannot identify a specific individual shall not be handled as personal information. However, in the event that such information is collated with other information and thereby can identify a specific individual, it shall be handled appropriately in accordance with Handling of Personal Information. - Refuse the use of cookies
You may refuse the use of cookies by selecting the appropriate settings on your browser. Please note, however, that you may not be able to use the full functionality of certain services based on Company's websites.