Toko Co., Ltd. (hereinafter referred to as “Toko”) is committed to protectingyou’re your personal information.
We provide the rules on the processing of personal data as follows. We shall comply with the laws and regulations applicable to us, including the Act on the Protection of Personal Information (Act No. 57 of 2003, hereinafter referred to as the “PIPA”).
By using our website, you are deemed to have consented to the collection, use, processing, and disclosure of your personal data in accordance with this Privacy Policy. We reserve the right to modify this Privacy Policy at any time. Please note that you are deemed to have consented to the modified Privacy Policy if you use our website after we have modified our Privacy Policy.

1	“Controller” means any natural or legal person, public authorities or other body who, alone or jointly with others, determines the purposes and means of the processing of personal data. In this Privacy Policy, “controller” means us.
2	“Personal data” means any information on an identified or identifiable natural person. An identifiable natural person means a person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, online identifier, or by reference to one or more factors indicating the physical, physiological, genetic, mental, economic, cultural or social identity of the natural person concerned.
3	“Processor” means any natural or legal person, public authorities or other body that handles personal data on behalf of a controller.
4	“Recipient” means any natural or legal person, public authorities, or other body to which personal data are disclosed, whether as a third party or not. However, public authorities that may receive personal data within a framework of a special investigation in accordance with the applicable laws shall not be included in the term “recipient”.
5	“Third party” means any natural or legal person, public authority or other body other than you, the controller, the processor, and persons authorized to handle personal data under the direct authorization of the controller or processor.
6	“Restriction on processing” means the marking of personal data stored in a record in order to limit its processing in the future.
7	“Processing” means an operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.。
8	“Profiling” means any form of automatic processing of personal data, consisting of the use of personal data, for the purpose of assessing certain personal aspects associated with a natural person, in particular for analyzing or predicting aspects regarding the natural person’s business performance, economic status, health, personal preferences, interests, reliability, behavior, location and movement.

1	Purpose of Processing We shall process personal data for the following purposes (1) Your Personal Data (a) Provision of services by us. (b) Planning, research, development, testing, and verification experiment of our products. (c) Access control to our facilities. (d) Transactions with us. (e) Necessary communication for business, business negotiations, and conclusion of contracts. (f) Responding to various inquiries (2) Personal Information of Job Applicants (a) Contacts and provision of employment information, etc. to job applicants. (b) Management of our recruitment operations. (3) Personal Information of Our Employees, etc. (a) Human resources and labor management (b) Payment of remuneration, salary, bonus, etc. (c) Procedures for social insurance, tax affairs, etc. (d) Contacts and provision of information to labor unions, health insurance associations, corporate pension funds, affiliated companies, seconded companies, etc. (e) Procedures at the time of retirement. (f) Emergency contacts, etc. (g) Notifications and reports to government and municipal offices. (h) Notifications, reports and communications to customers and business clients in the course of assigned duties. (i) Other necessary business procedures and communications.
2	Acquisition Sources of Personal Data We shall obtain personal data from the following acquisition sources for the purpose of the processing under the preceding paragraph. (a) You (including not only direct but also indirect acquisition). (b) Publicly available information. (c) Social media. (d) Surveys provided by third parties.
3	Types of Acquired Personal Data (a) Personal attribute information. (b) Personal purchase history related to personal data processed by us. (c) Products and services provided. (d) Financial information. (e) Educational background. (f) Employee information.
4	Provision and sharing of personal data We may need to share personal data with the following third parties for the purposes of the processing under Paragraph 1 of this Article. If this is necessary, we will comply with the applicable privacy laws and regulations. (a) Our group companies. (b) Professional experts such as attorney at law, tax accountants, and certified public accountants. (c) Financial institutions. (d) Current, past, and future employees. (e) Service providers and suppliers.

The legal basis for the processing of personal data is as follows:

(a)	You have given consent to the processing of your personal data for one or more specific purposes. Note: If the processing is based on your consent, you have the right to withdraw this consent.
(b)	The processing is necessary for the performance of a contract to which you are a party; or for the fulfillment of a procedure at your request prior to the conclusion of the contract.
(c)	The processing is necessary in order for the controller to comply with its legal obligation.
(d)	The processing is necessary in order to protect your vital interests or those of another natural person.
(e)	The processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
(f)	The processing is necessary for the legitimate interests pursued by the controller or a third party. However, this is not applicable where fundamental rights and freedom of which you seek protection have a priority over such interests. Note: following are the cases where the legitimate interests provide a legal basis for the processing under this paragraph: - Marketing to you (direct marketing). - Customer service to you. - Job applications to us.

Under the privacy laws and regulations applicable to us, you have the following rights. In order to assert these rights, you may at any time contact the Data Protection Officer (DPO) appointed by us.

(1)	Right to information You may obtain from the controller any information regarding the processing of your personal data held by the controller.
(2)	Access right You may request an access to your personal data which is being processed. In such a case, the controller must provide a copy of such personal data.
(3)	Right to rectification You may request the controller to rectify inaccurate personal data.
(4)	Right to erasure (right to be forgotten) In certain cases, you have the right to have your personal information erased by the controller without delay.
(5)	Right to restriction on processing In certain cases, you have the right to have the controller restrict the processing of your personal data.
(6)	Right to be informed of rectification, erasure, or restriction of processing of personal data In the case of (3) through (5) above, the controller shall inform the recipient of the personal data of the processing and, if you so request, inform you of the recipient.
(7)	Right to data portability You have the right to receive your personal data in a structured, commonly used and machine-readable format. You shall also have the right to transmit those data to another controller without hindrance from the controller to whom the personal data have been provided.
(8)	Right of objection You have the right to object to the processing of your personal data on the basis of the necessity of the processing for purposes of legitimate interests pursued by the controller or a third party.
(9)	Right not to be subject to automated processing, including profiling You shall have the right not to be subject to a decision based solely on automated processing, such as profiling, that has legal effects on you or similarly significantly affects you.

As the controller, we have put in place sufficient technical and organizational safeguards for the protection of personal data. If you have concerns about a particular method of the data transfer, etc., we will take sufficient alternative measures.

To the extent necessary to achieve the purposes for the processing of data, we may transfer and handle your personal data outside of Japan. In such a case, we will take the necessary measures to ensure that we comply with this Privacy Policy and the privacy laws and regulations applicable to us. By agreeing to this Privacy Policy, you are deemed to have voluntarily and explicitly given your consent to the transfer of your personal data outside of Japan prescribed in this Article.

We will store your personal data to the extent necessary for the purposes of the processing of the data, but will erase the personal data where it is no longer necessary for such purposes.

We shall not collect or process any personal information regarding children under 16 years of age without consent from their parents. Should we learn that personal information regarding children under 16 years of age is included in the personal information collected by us, we shall promptly erase such personal information.

You have a right to appeal to the supervisory authority at any time. However, we ask you to contact us and to give us an opportunity to respond to your complaint before you attempt to contact the supervisory authority.

The Data Protection Officer (DPO) appointed by us is as follows:
General Affairs Department
Toko Co., Ltd.
5-27-10 Hongo, Bunkyo-ku, Tokyo 113-0033, Japanv Tel: +81-(0)3-3815-5811
E-mail: info@toko-tool.co.jp