Joe’s Corporation Co., Ltd. (hereinafter referred to as “the Company,” “we,” or “us”) have established and enforced a policy on the protection of personal information in tandem with the introduction of the Act on the Protection of Personal Information on April 1st, 2005.
We are aware of the importance of personal information disclosed/lent from a customer (hereinafter referred to as “personal information”) and will handle them legally and carefully in accordance with the Act on the Protection of Personal Information. In addition, in order to provide better service, we will implement the following initiatives regarding access and handling of personal information and responsibly protect personal information.
We shall comply with the Act on the Protection of Personal Information and other related laws and regulations.
We recognize the importance of information related to the privacy of our customers, business partners, and every individuals (hereinafter referred to as “customers” in this chapter), and have established internal rules and, when necessary, business-specific rules regarding the handling of personal information and systems, and in cooperation with partner clinics and physicians registered on this site, we have established a system to comply with the protection of personal information, and have established the following basic policy (Privacy Policy) for handling such information accurately and faithfully, and will manage such information in strict accordance with this policy.
When we collect personal information, we will specify the purpose and will use in the range required to accomplish the purpose, after obtaining the consent of the information owner.
We will acquire personal data by lawful and fair methods in the following cases. In addition, when acquiring personal data, we will notify or announce the purpose of use in advance (including the announcement of the purpose of use according to the following article).
This also applies to cases where personal information is obtained legally, such as when receiving information from a third party with the consent of the customer.
We will use personal information obtained only for the following purposes, or for the purposes individually notified to customers. or announced in individual services, and will not use it for any purposes other than these. We will not use personal information for any purposes other than those listed below. We will also take measures to ensure that personal information is not used for any other purposes. The specific examples of the use of personal information are as follows.
Notwithstanding the above, when we receive personal information from a third party, if there is a separate stipulation regarding the purpose of use of such personal information, we will use such personal information in accordance with such stipulations.
When we ask to disclose / lend personal information, we will specify the purpose and will use in the range required to accomplish the purpose, after obtaining the consent of the information owner. We do not use it for purposes beyond the scope of the purposes of use.
In addition to cases permitted by law, we will provide personal information to our partners and other third parties (including third parties located in foreign countries; the same applies hereinafter), after we have obtained the consent of the customer or the other parties. However, in the following cases, we will provide personal information to third parties to the extent necessary, after excluding information that can directly identify specific individuals, such as names and addresses.
We may share user information, etc. with the listed medical institutions to the extent necessary to provide multilingual online medical services.
The user information, etc. to be jointly used shall be as follows
Scope of Joint Users
Purpose of Use
We take appropriate measures to keep personal information accurate and up to date.
We will handle your personal information appropriately in accordance with the Personal Information Protection Law and this Privacy Policy. In addition, in order to prevent inappropriate handling such as use for other purposes, we will implement the following safety control measures to ensure the safety of personal information and the information systems that process personal information.
In order to ensure that these security control measures are properly implemented, the management system will be reviewed on a regular basis.
In the event of an incident such as a leakage of personal data, we will report the incident to the regulatory authorities in accordance with the Personal Information Protection Law and related guidelines, and take necessary measures to prevent similar incidents from occurring or recurring, in accordance with the instructions of the relevant regulatory authorities.
We will conduct employee education regarding protection of personal information and make employees fully aware of the content.
We will not provide or disclose personal information disclosed or leased by us to third parties without the consent of our customers and business partners, unless we determine that disclosure is necessary based on laws and regulations.
In cases where customers wish to request disclose / correct or terminate the use or provision of personal information, we will immediately take any necessary actions within reasonable and necessary range.
To prevent information leakage to third parties, we will disclose / correct or terminate the use or provision of personal information only after we have confirmed that the requestor is the customer concerned or his authorized representative by asking to submit a written application form prescribed by us with required information.
The Company complies with regulations regarding the handling of personal information and responds promptly and appropriately to various requests from customers regarding their personal information. In particular, the Company accepts requests for disclosure, rectification, amendment, erasure, suspension of use, deletion, suspension of third-party provision, notification of purpose of use, withdrawal of consent (where applicable) and disclosure of third-party provision records. However, there may be instances where these requests do not meet legal requirements or cannot be accommodated by customer preferences.
We may charge a prescribed fee for the disclosure or correction of personal information, or for the discontinuation of its use or provision.
Please contact below for more information.
We will constantly reexamine and revise our internal rules regarding handling of personal information and organizational frameworks to enforce them, to ensure that operations remain effective and reasonable.
Supplementary Provisions
This company policy was established and enforced on August 27th, 2020, re-established and re-enforced on March 10th, 2022, and re-established and re-enforced on July 1st, 2022
Joe’s Corporation Co., Ltd.
CEO Tatsunori Jo / Co-Representative Chie Naoi
For privacy policies of registered medical institutions for online medical examinations, please check from the URL below.
Medical Corporation Shououkai
This document is intended to supplement the original Japanese version. In the event of any discrepancy in content or interpretation between this translation and the original, the content of the original shall prevail.
Allm Inc. (“Allm”) has established this Tytocare Privacy Policy (the “Policy”) to protect the personal data of its customers. This personal data is provided by customers (including, but not limited to, the personal data of their employees) to ensure the smooth provision of the Japanese version of the remote medical examination device, application software, related platform services, and other solution services (collectively, the “Solution”) that Allm provides in Japan under contract with SOMPO Light Vortex Co., Ltd. (“SOMPO”) and Tyto Care Ltd., a corporation in the State of Israel (“Tyto”). The term “personal data” as used herein includes not only personal information and personal data as defined in the Act on the Protection of Personal Information (the “APPI”), but all data concerning individuals.
(1) The items of personal data that Allm acquires in connection with the Solution are as follows. Allm acquires customers’ personal data by methods such as acquiring it directly from customers upon entering into a user agreement for the Solution, and by acquiring it via the devices provided as part of the Solution (the “Designated Devices”).
① Method of Acquisition: Directly from the customer ・Customer attribute information (address, name of affiliated organization/group, affiliation, telephone number, email address, etc.) ・Information entered or transmitted by the customer through input forms or other methods specified by Allm
② Method of Acquisition: Automatically via Designated Devices ・Information acquired through the use of the Designated Devices (vital sign values, images, videos, audio, etc.) ・Information concerning the usage of the Designated Devices (device ID, OS, IP address, usage status of the Solution, etc.)
③ Method of Acquisition: Information collected by Allm when the customer uses the Solution ・Referrer ・IP address ・Information related to server access logs ・Cookies, ADID, IDFA, and other identifiers ・Other information regarding access status to the Solution and other methods of use
(2) The purposes of use for the personal data acquired by Allm as described above are as follows. However, with regard to personal data of third parties other than the customer (including end-users of the Solution) that the customer provides to Allm for the use of the Solution, Allm shall use such data only for the smooth provision, maintenance, and protection of the Solution, taking into consideration the purposes of use set by the customer.
For the provision of the Solution, acceptance of registration for the Solution, identity verification, customer authentication, recording of customer settings, settlement and calculation of usage fees, and other purposes for the smooth provision, maintenance, protection, and improvement of the Solution.
For contacting customers and distributing/sending email newsletters, direct mail, and various notices in connection with the use of the Solution.
For measuring customer traffic and behavior in using the Solution.
For conducting campaigns, surveys, monitoring, interviews, etc.
For registering, confirming, and authenticating user information for the Designated Devices.
For providing the functions of the Designated Devices.
For analyzing the usage of the Designated Devices to consider the implementation of additional functions to enhance the value of the Designated Devices.
For confirming and responding to inquiries from customers.
For investigating actions prohibited by the terms of use, privacy policy, etc. (collectively, the “Terms of Use, etc.”) related to the Solution.
For notifying customers of changes to the Terms of Use, etc.
(3) Allm will not use personal data for any purpose other than those specified above. In the event that Allm uses personal data from customers for purposes other than those specified above, it will be used within a scope reasonably deemed to be related to the purposes of use described above, and the purpose of use will be separately specified and notified or publicly announced individually in writing or by other means.
In acquiring and using personal data, Allm shall comply with the APPI and other applicable laws and regulations, conduct business related to the Solution in an appropriate manner, and will not use personal data in a way that may encourage or induce illegal or unjust acts.
Allm will thoroughly implement the following measures for the management of customer personal data (including information related to anonymously processed information).
(1) Organizational Security Control Measures Allm will establish a management system, including internal organizations and regulations, to ensure that personal data is handled appropriately. Allm will also ascertain and confirm the status of personal data handling and will continuously review and improve these security control measures.
(2) Human Security Control Measures Allm will ensure thorough education and guidance for its employees regarding the handling of personal data through periodic training and other means. Allm will exercise necessary and appropriate supervision over its employees in accordance with Allm’s regulations.
(3) Physical Security Control Measures Allm will appropriately manage the areas where information systems handling personal data are managed, establish measures to prevent the theft or loss of devices and electronic media containing personal data, and will dispose of such devices and electronic media by means that make recovery impossible.
(4) Technical Security Control Measures Allm will appropriately control and manage access rights to personal data, establish a system to prevent unauthorized access from external sources, and continuously review and improve the security of its information systems.
(5) Supervision of Contractors When outsourcing the handling of personal data, Allm will entrust it only to contractors that meet the requirements based on Allm’s regulations and will conduct appropriate management.
(6) Retention Period and Disposal With respect to personal data provided by customers, Allm will endeavor to keep such data accurate and up-to-date within the scope necessary to achieve the purposes of use, and to delete such personal data without delay when it is no longer necessary to use it.
In the event that a situation that poses a problem to the security of personal information, such as the leakage of customer personal data, occurs or is likely to occur, Allm will, in accordance with laws and regulations, promptly notify the individuals concerned and report to the Personal Information Protection Commission and other relevant authorities as necessary.
(1) Allm may provide personal data to third parties in the cases specified in the following items.
① Cases in which Allm provides the personal data described in 1(1) above to SOMPO Light Vortex Co., Ltd., the licensor of the Solution, for the purpose of improving service quality, such as confirming and responding to customer inquiries, and for contacting customers, distributing/sending email newsletters, direct mail, and various notices, and conducting campaigns, surveys, monitoring, interviews, etc. in connection with the use of the Solution. ② Cases in which Allm outsources all or part of the handling of personal data within the scope necessary to achieve the purposes of use. ③ Cases in which the handling of personal data is outsourced to Tyto (an Israeli corporation), the manufacturer of the Solution, etc., for the smooth provision, maintenance, protection, and improvement of the Solution. ④ Cases in which personal data is provided in connection with the succession of business due to a merger or other reasons. ⑤ Cases in which it is necessary to cooperate with a state organ or a local public entity or a person entrusted by them in executing the affairs prescribed by laws and regulations, and in which obtaining the user’s consent is likely to impede the execution of the said affairs. ⑥ Cases otherwise permitted by the APPI or other laws and regulations.
(2) In providing the Solution, Allm may entrust customer personal data to a third party in a foreign country as follows for the purpose of smooth provision, maintenance, protection, and improvement of the service.
Israel | System for the Protection of Personal Information in the Said Foreign Country |
Measures Taken by the Business Operator in the Said Foreign Country for the Protection of Personal Information |
---|---|---|
For information on the system for the protection of personal information in this country, please refer to the website of the Personal Information Protection Commission. (Link: https://www.ppc.go.jp/files/pdf/israel_report.pdf) | The entrusted company has taken all measures corresponding to the eight principles of the OECD Privacy Guidelines. |
If a customer requests the disclosure, correction, suspension of use, etc., of their personal data, Allm will respond in accordance with laws and regulations based on the method prescribed by Allm. For specific procedures, we will provide individual guidance, so please contact the inquiry desk listed below.
Allm will amend this Policy as necessary. However, if any amendment requires the customer’s consent under law, the amended Policy shall apply only to those customers who have consented to the amendment in the manner prescribed by Allm. In addition, when amending this Policy, Allm will make the effective date and content of the amended Policy known to the public by posting it on the Solution’s website or by other appropriate means, or will notify customers.
For opinions, questions, inquiries about security control measures, complaints, and other inquiries regarding the handling of personal data (including information related to anonymously processed information) concerning the Solution, please contact the following:
Contact Desk
Allm Inc.
Personal Information Inquiry Desk
E-mail: privacy@allm.jp
Established November 13, 2023
41F Shibuya Scramble Square, 2-24-12 Shibuya, Shibuya-ku, Tokyo
Allm Inc.