Effective Date: April 1, 2005
Date of Last Revision: February 21, 2018
Junko Saito
Representative Director
Soken Inc.
Personal Data Protection Policy
Soken Inc. (Soken), an integrated advertising agency specializing in finance, recognizes the importance of protecting personal data. Soken collects, manages, and protects personal data in accordance with JIS Q 15001 Personal Information Protection Management System-Requirements. Soken will review and adjust its practices as necessary to maintain its compliance with these standards, applicable law, and the following basic policies.
Soken collects personal data from clients and employees. We will inform individuals contributing data about how their personal data may be used and with which third parties it may be shared. Soken may share personal data with third parties only within the scope of our business, or to fulfill a specific request from clients or employees, or in compliance with the law or a binding court order. Soken will not otherwise share or use personal data without prior notification and permission.
Soken will share personal data only with service providers that, in Soken’s sole judgment, meet our criteria for managing and protecting personal data.
Soken Inc. will protect personal data with logical safety controls, and pre-emptive and corrective measures against its loss, destruction, and leakage so that clients and employees feel secure providing their data.
Soken will comply with all applicable laws, regulations, and government-promulgated guidelines regarding the protection of personal data.
Soken will regularly review and update our personal data management practices to maintain compliance.
Questions or concerns about personal data at Soken should be addressed to:
Service Representative for Matters Concerning Personal Data
Soken Inc.
San-ai Kayabacho Bldg. 2F, 2-13-11 Nihonbashi Kayabacho, Chuo-ku, Tokyo 103-0025
Tel.: 03-5641-5170
Handling Personal Data
Soken will manage personal data with the utmost caution, as outlined below.
1.Business Operator
Soken Inc.
San-ai Kayabacho Bldg. 2F, 2-13-11 Nihonbashi Kayabacho, Chuo-ku, Tokyo 103-0025
(Junko Saito, President and Representative Director)
2. Personal Data Protection Manager
The Manager is charged with overseeing the handling and safeguarding of personal data under Soken’s control. Every effort will be made to protect personal data from unauthorized access, tampering, loss, leakage, or destruction. Questions or concerns regarding personal data may be directed to:
Personal Data Protection Manager
Soken Inc.
Tel.: 03-5641-5170
3. Using Personal Data
Soken Inc. will use the personal data it collects to:
Manage subscribers’ information on websites Soken operates.
Complete mailings and other subscriber-related services for Soken publications.
Conduct surveys, questionnaires, and the like.
Publicize seminars and events sponsored by or otherwise involving Soken.
Provide credits or citations to accompany names and photos of persons appearing in Soken publications
Manage personal data of seminar participants.
Communicate with clients, subscribers, and seminar/event applicants.
Manage HR issues concerning employees.
Communicate with job applicants.
Navigate career changes.
Connect IFAs (Independent Financial Advisors) and potential investors.
Provide and manage paid digital content services.
4. Sharing Personal Data
Soken will not share personal data we collect with third parties, except:
When consent has been obtained in advance from the owner of the personal data.
When required by law or binding court order.
When providing personal data to a subcontractor under paragraph 5 below.
5. Subcontracting Personal Data
Soken may outsource some of our operations to provide better service. Accordingly, Soken may provide personal data to its subcontractors. Soken will select and contract only with subcontractors that demonstrate active data management systems capable of adequately protecting personal data.
6. Disclosure Request for Personal Data
A person or entity authorized to provide or control personal data (owner) may request that Soken disclose, amend, append, delete, or cease to provide personal data under our control to third parties. Soken will respond to such requests in a timely manner.
7. Disclosing Personal Data and Providing Records to Third Parties
Upon receipt of a request by the owner of personal data and confirmation of the owner’s identity, Soken, to a reasonable extent, will disclose, amend, append, delete, or cease providing relevant personal data and associated records to third parties. The disclosure shall be made by the method specified by the owner of personal data, including the provision of electromagnetic records. Personal data will not be disclosed when such disclosure may harm the life, body, property, or other rights and interests of any individual; when disclosure may significantly hinder Soken’s business operations; or when disclosure may contravene binding laws and regulations. Where otherwise required by law, Soken will take appropriate measures in accordance with the relevant laws and regulations.
8. Measures for Secure Management of Personal Data
To prevent unauthorized access, loss, leakage, or other damage to retained personal data, Soken will implement measures for appropriate security management. Specific security control practices include:
- 1)
Organizational security management practices
Soken maintains a Personal Data Protection Manager and related staff who handle personal data and monitor compliance with Soken’s policies and external law regarding personal data. Soken conducts periodic inspections and internal audits to maintain security and compliance with its personal data management policies. - 2)
Personnel security management practices
Soken employees who handle personal data are bound by confidentiality agreements and receive ongoing training regarding their duties and responsibilities. - 3)
Technical security management practices
Soken restricts the number of employees and equipment authorized to handle personal data. Equipment carrying personal data is outfitted with antivirus software and is inspected regularly for unauthorized access and other security breaches. Soken prevents leakage, loss, or other damage to personal data by setting passwords and access barriers to such information. - 4)
Physical security management practices
Soken limits the equipment on which personal data may be handled and the areas where such equipment may be used.
In areas where personal data is handled, Soken prevents unauthorized persons from viewing personal data by controlling employee access and restricting the equipment and other items they may bring in. Soken takes steps to ensure personal data is not inadvertently revealed on portable media. When equipment is disposed and personal data is deleted, all data is destroyed and unrecoverable.
9. Confirming Identity
Before acting on a request to disclose, amend, append, delete, or cease to provide personal data under Soken’s control to third parties, Soken will confirm the owner’s identity and authority.
Individual owner
- 1)
Soken will send a document requesting confirmation of the owner’s identity to the owner’s
preferred address on file. The owner must verify the information in the request, then sign and return the confirmation to Soken, along with a certificate of residence. - 2)
Soken will contact the owner at the phone number on file to seek confirmation of the request and verification of the owner’s identity.
- 3)
Soken will send an e-mail to the e-mail address on file. The owner must reply to the incoming e-mail to confirm the request and verify his/her identity.
Owner’s attorney
The following documents are required:
- a)
Request in person
- –
Driver’s license or other document verifying the attorney’s identity.
- –
A family register or other document, no more than 30 days old, certifying the attorney’s qualification. Photocopies will not be accepted.
- –
- b)
Request by mail
- –
A copy of a driver’s license or other document verifying the attorney’s identity.
- –
A certificate of residence, no more than 30 days old, certifying the attorney’s residence. Photocopies will not be accepted.
- –
A family register, no more than 30 days old, certifying the attorney’s identity. Photocopies will not be accepted.
- –
Owner’s proxy or authorized representative
The following documents are required:
- a)
Request in person
- –
Authorization letter.
- –
Driver’s license or other document verifying the proxy’s identity.
- –
- b)
Request by mail
- –
Authorization letter.
- –
A copy of driver’s license or other document verifying the proxy’s identity.
- –
A certificate of residence, no more than 30 days old, certifying the proxy’s identity. Photocopies will not be accepted.
- –
10. Procedures for Disclosing Personal Data
After confirming the owner’s identity, Soken will mail a “Disclosure Request” form to the owner. Upon receipt of the completed form, Soken will acknowledge receipt and confirm by telephone or return mail that personal data has been disclosed, amended, appended, deleted, or no longer provided to third parties per the request. Data will be disclosed by the method designated by the requester, when possible. Otherwise, data will be disclosed by document. No fee will be charged in connection with requests to disclose, amend, append, delete, or cease providing personal data to third parties.
Please direct all correspondence regarding personal data to:
Personal Data Protection Manager
Soken Inc.
San-ai Kayabacho Bldg. 2F, 2-13-11 Nihonbashi Kayabacho, Chuo-ku, Tokyo 103-0025
Tel.: 03-5641-5170