Privacy Policy

Privacy Policy Regarding the Personal Data of Users Residing in the European Economic Area and the United Kingdom

The Tokyo Metropolitan Government and The Tokyo Metropolitan Small and Medium Enterprise Support Center (hereinafter, "We", "Our", or "Us") recognize the importance of protecting personal information and is committed to appropriately managing personal data obtained in the course of providing services for the "Inter-regional Economic Exchange Program".
This privacy policy details the processing of personal data of users residing within the United Kingdom and the European Economic Area (hereinafter, "EEA"), which comprises the European Union as well as Norway, Iceland, and Liechtenstein.

1.Controller of Personal Data

We serve as the controller of personal data.

2.Types of Personal Data Obtained

  1. We obtain and processes all or some of the personal data listed below.
    1. (i)The personal data obtained when users contact us.
      The personal data provided by users when using the "Contact Us" page on the website
    2. (ii)The personal data obtained when users use services provided by us (both online and offline)
      The personal data provided by users when using services provided by us
    3. (iii)Survey information
      The personal data contained in responses to surveys conducted for research purposes by (i) us or (ii) third parties to which We have outsourced such projects
    4. (iv)Communications logs
      Communication logs recorded when users make use of the contact information provided on the website
    5. (v)Information obtained via using this website
      Information obtained when users access the website, information obtained from cookies or other tracking technologies
  2. Below are examples of the personal data we obtain through the methods listed above.
    • Your name
    • Your company name and job title
    • Your zip code, address, phone number, and fax number
    • Your e-mail address
    • Other information necessary to provide services

3.Purpose of Processing Your Personal Data

We use your personal data for the following purposes and only to the extent necessary to achieve these purposes.

  1. To communicate with users or to provide information to users
  2. To provide and operate services, events, seminars, and other activities for which users apply to participate
  3. To conduct surveys regarding services, events, seminars, and other activities in which users have participated, and to track the results of such activities
  4. To match users with companies that they want to contact
  5. To achieve other purposes specified when a user’s personal data is obtained

4.Legitimate Interests for Processing Your Personal Data

In accordance with the General Data Protection Regulation 2016/679 and the UK General Data Protection Regulation (hereinafter collectively referred to as "Data Protection Regulations"), we protect your personal data by processing such data only to the extent necessary to achieve the purposes laid out in Section 3. We process your personal data based on one of the following legitimate interests.

  1. Consent
    Where users have given consent for their personal data to be processed
  2. Performance of a contract
    Where processing is necessary for (i) the performance of a contract to which users are party or (ii) in order to take steps at the request of users prior to entering into a contract
  3. Legal obligation
    Where processing is necessary for compliance with a legal obligation to which we are subject
  4. Protection of human life
    Where processing is necessary to protect the interests of users or of third parties as they relate to the preservation of human life
  5. Public interest
    Where processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us.

5.Sharing of Your Personal Data as Needed to Provide Services

We may share your personal data with third parties. In such cases, we require your personal data be processed in accordance with a contract that stipulates that (i) your personal data be protected, (ii) your personal data be processed in compliance with Data Protection Regulations, and (iii) your personal data only be processed in a manner that follows instructions given by us.

  1. Outsourcing
    When we entrust third parties (including sub-contractors) with tasks related to the management and operation of this website or the planning and operation of events and the processing of your personal information is necessary for the performance of such tasks
  2. Companies or other affiliated organizations from which we receive support or collaborates with in order to carry out relevant tasks
    When users consent to the provision of their personal data to small and medium-sized businesses as well as other affiliated organizations from which we receive support or collaborates with in order to carry out relevant tasks
  3. Parties (lecturers, etc.) related to services, events, seminars, and other activities for which users apply to participate
    When it is necessary for parties (seminar lecturers, the organization to which such lecturers belong, etc.), which are related to services, events, seminars, and other activities for which users apply to participate, to process personal data in the course of conducting such services, events, seminars, and other activities

6.Retaining and Transfer of Your Personal Data

We are located in Japan, and in principle, third parties as described in Section 5 that process your personal data are also located in Japan, the EEA, or the United Kingdom. Japan has received an adequacy decision from the European Commission for the protection of personal data. We comply with the requirements set forth by Data Protection Regulations, including the Japan-EU adequacy decision and relevant Japanese laws and regulations, when providing personal data to third parties. When transferring your personal data to regions outside of the EEA that have not received an adequacy decision from the European Commission, we clearly state the legitimate interests for doing so. If you would like to know more about where your personal data is retained or transferred, you can get in touch with us using the contact information provided in Section 17.

7.Period that Your Personal Data is Retained

We retain personal data collected from users while services are rendered to them. Once a service provision period ends, we delete the relevant personal data.

8.Requests Pertaining to the Processing of Your Personal Data

You are afforded the following rights regarding your personal data retained by us.

  1. The right to obtain confirmation regarding whether or not data collected by us is being processed and, if it is, the right to access said data (by exercising this right, you can receive a copy of your personal data)
  2. The right to request the correction of inaccurate data collected/processed by us.
  3. The right to request the erasure of data collected/processed by us.
  4. The right to request that restrictions be placed on the processing of data collected/processed by us.
  5. The right to object to the processing of data collected/processed by us.
  6. The right to withdraw consent when personal data is processed based on the consent of users (however, we will continue to process the personal data of users if we have other legitimate interests for doing so)
  7. The right to request data portability regarding the data collected/processed by us

You can exercise your rights by reaching out to us using the contact information provided in Section 17. If you are dissatisfied with us response to your request, or if you believe that your personal data is being mishandled, you have the right to lodge a complaint with a supervisory authority.

9.Application Scope

This privacy policy only applies to this website and not to links posted on this website that lead to other sites.
The processing of information on external websites linked from this website is the responsibility of each respective organization to which the external link can be attributed.

10.Source of Personal Data Obtained

We obtain personal data directly from users.

11.Cookies

We may collect information (which generates cookies) sent by your browser when you access our services. This information may include the IP address of your computer, your browser type, browser version, your accessing of this website, the date at which you accessed this site, the time you spent on web pages on this website, and other diagnostic data. You can set your browser so that it rejects all cookies, or to notify you when cookies are being sent. It should be noted, however, that rejecting cookies may make it impossible to use certain our services. Check our Cookie Policy for more details.

12.Disclosures for the Purpose of Law Enforcement

Under certain circumstances, we may be required to disclose your personal data if legally required to do so or in response to legitimate requests from public authorities (such as courts or government agencies).

13.Legal Requirements

We may disclose your personal data in the event that we, in good faith, believe that doing so is necessary for the following purposes.

  1. To comply with a legal obligation
  2. To protect and defend the rights or assets of us
  3. To prevent or investigate illegal activities related to the services provided on this website
  4. To protect the life or physical safety of users of this website or third parties
  5. To protect the users of services provided on this website against legal liability

14.Data Security

We take appropriate organizational and technical security measures to prevent the unauthorized use, the loss, or the alteration of personal data in order to protect your personal data through commercially acceptable methods.

15.Links to Other Websites

This website may include links to other sites not operated by us. When you click on a third party link, you will be directed to a third party website. We encourage you to review the privacy policies of all websites that you visit.
We have no control over, and assumes no responsibility for, the content, privacy policies, or practices of any third party website or service.

16.Changes to This Privacy Policy

We may make changes to this policy as needed, and we will notify users of any changes by posting the new privacy policy on this page.

17.How to Contact Us

If you have any questions regarding this privacy policy or the exercise of your rights, you can reach out to us using the contact information below.

The State of North Rhine-Westphalia, Germany
The Tokyo Metropolitan Small and Medium Enterprise Support Center

ttc@tokyo-kosha.or.jp
The State of Texas, the United States of America
Deloitte Touche Tohmatsu LLC

kaigaitenkai.tokyo@tohmatsu.co.jp

TOP