Privacy policy
CraveStone Inc. (hereinafter referred to as “the Company”) hereby establishes the following Privacy Policy (hereinafter referred to as “this Policy”) regarding the handling of user information, including personal information, in connection with the services provided by the Company (hereinafter referred to as “the Services”).
Article 1 (Personal Information)
“Personal information” refers to information as defined under the Act on the Protection of Personal Information (Act No. 57 of 2003, hereinafter referred to as the “Personal Information Protection Act”), and includes information about a living individual that can identify a specific person by name, date of birth, or other descriptions, or contains personal identification codes.
Article 2 (Collection and Use of Personal Information)
The Company will collect and use personal information to the extent necessary for the following purposes. If the Company intends to use personal information beyond the scope of these purposes, it will obtain the user’s prior consent through appropriate means.
1. To provide the Services
2. To improve or enhance the Services or to develop new services
3. To inform users about new features, updates, campaigns, and other services via email, brochures, or other forms of direct communication
4. To contact users when necessary regarding maintenance or important notices
5. To respond to user inquiries regarding the Services (including identity verification)
6. To provide users with reports on their use of the Services
7. To request participation in surveys or events related to the Services, and to report the results
8. To analyze usage history and data to improve the Services and tailor advertising
9. To identify users who violate the Terms of Use or attempt to use the Services for fraudulent purposes, and to deny access accordingly
Article 3 (Management and Protection of Personal Information)
The Company will strictly manage personal information and will not disclose or provide it to third parties without user consent, except in the following cases. The Company will also implement appropriate security measures to prevent and correct risks such as unauthorized access, loss, destruction, alteration, or leakage of personal information.
1. When necessary to protect life, body, or property and obtaining consent is difficult
2. When particularly necessary for public health or child welfare and obtaining consent is difficult
3. When cooperation with government or local authorities is required and obtaining consent may interfere with the execution of their duties
4. When outsourcing the handling of personal information within the scope necessary for business operations
5. When personal information is provided as part of a business transfer due to merger or other reasons
6. When permitted by law
Article 4 (Outsourcing of Personal Information Handling)
The Company may outsource the handling of personal information in whole or in part within the scope necessary to achieve the purpose of use. In such cases, the Company will carefully evaluate the suitability of the contractor, define confidentiality obligations in contracts, and exercise necessary and appropriate supervision.
Article 5 (Disclosure of Personal Information)
When requested by a user under the Personal Information Protection Act, the Company will promptly disclose the relevant personal information after confirming the request is from the user themselves. If the requested personal information does not exist, the Company will notify the user accordingly. However, this does not apply where the Company is not legally obligated to disclose such information.
Article 6 (Correction and Suspension of Use of Personal Information)
1. If a user requests correction of their personal information on the grounds that it is inaccurate, and unless special procedures are required by other laws, the Company will conduct the necessary investigation and make corrections or suspend use as appropriate, and notify the user.
2. If a user requests suspension or deletion of their personal information on the grounds that it is being used beyond the intended purpose or was obtained fraudulently, the Company will investigate and take appropriate measures. If the suspension or deletion is difficult or would involve excessive cost, the Company will instead implement alternative measures to protect the user's rights and interests.
Article 7 (Policy Updates)
The Company will review and improve this Policy as needed. Unless otherwise required by law, changes to this Policy may be made at the Company’s discretion. Updated versions will take effect upon being posted on the Company’s website or through other prescribed means of notification.
Article 8 (Contact Information)
For inquiries, feedback, or complaints regarding this Privacy Policy or the handling of personal information, please contact:
CraveStone Inc.
Toyo Building Room 524
1-2-10 Nihonbashi, Chuo-ku, Tokyo 103-0027
TEL: 03-5542-1087