個人情報の取り扱いについて

個人情報保護方針

当社は個人情報に関する管理が重大な責務であることを十分に認識し、「個人情報の保護に関する法律」の遵守はもとより、個人情報保護に関する基本方針を制定し、全従業員に周知徹底させます。
また、確実な個人情報の管理を実現し、お客様をはじめとした個人情報の提供者(以下「提供者」)への継続的な安心を提供いたします。

個人情報保護についての考え方

お客様に関する情報や人事情報など業務実態に応じた個人情報の保護のための管理体制を確立するとともに、以下の内容について社内規程および基準に従い、個人情報を適切かつ慎重に取り扱います。

(1)個人情報の収集について

個人情報を収集する際には、提供者に対し収集する目的を明確にし、その目的達成に必要な限度において適法かつ公正な手段を用います。

(2)個人情報の利用について

個人情報を利用する際には、提供者が同意を与えた収集目的の範囲内で利用します。

(3)個人情報の提供および預託について

個人情報を第三者に提供および預託する際には、提供者が同意を与えた収集目的の範囲内でこれを行います。 なお、提供および預託が予定されている場合は、事前に提供者から承諾を得るものとします。

(4)安全対策の実施について

個人情報の取り扱いに関する規程を明確にし、従業者に周知徹底させ、必要な安全対策を実施することにより、個人情報への不正アクセスまたは個人情報の紛失、破壊、改ざん、漏洩等を確実に防止します。また、内部監査の結果およびセキュリティ事故の実例、提供者からの指摘・要望等により改善が必要とされる場合は、速やかにこれを是正します。

(5)個人情報の開示・訂正・削除等

提供者から情報の開示、訂正・削除、利用の停止、消去、移転または異議を求められた場合は、合理的な期間および範囲でこれに応じます。

(6)法令遵守と改善

個人情報の取り扱いにおいて、個人情報の保護に適用される法令・通達およびその他の諸規程を遵守し、個人情報が適正に取り扱われるよう継続的な改善に取り組むこととします。

2018年10月
株式会社ユナイテッドアローズ
代表取締役 社長執行役員 竹田 光広

Privacy Policy

We will observe the privacy policy and establish a basic policy regarding the protection of personal information and disseminate it to all of our employees.
We will also continue to provide security to our customers who are the providers of personal information by a reliable management system.

Our Approach

We will establish an operational system to protect personal information (customer information, personnel information, etc.) that derives from each business situation. We will handle personal information with care following company terms and standards decided internally, as described below.

(1) Collecting Personal Information

When collecting personal information, we will clarify the purpose of using the personal information and will use it appropriately and fairly in order to achieve the purpose of collecting the personal information.

(2) Using Personal Information

We will use personal information only under the condition that is agreed by the provider.

(3) Providing and Depositing Personal Information

When providing or depositing personal information to a third party, we will only do so under the agreed purpose of collecting personal information. Also, when we know in advance that we are providing or depositing personal information to a third party, we will ask the provider for agreement.

(4) Safety Policy

We will clarify the conditions to handle personal information and disseminate it throughout the company. By doing so, we will take necessary safety actions to prevent illegal access or loss, damage, alteration and leakage of personal information. Additionally, we will make necessary improvements according to reports from internal audit, examples of security problems, and requests from the information providers, etc.

(5) Disclosing/Amending/Eliminating Personal Information

We will disclose, amend, eliminate stop usage, erase, implement data portability or respond to an objection of provided personal information if required in an appropriate time limit and area.

(6) Observing Law

We will continue to improve our operation so that personal information is handled appropriately, and observe the laws and official notices that are applied to protect personal information.

October 2018
Mitsuhiro Takeda
Representative Director, Executive Officer and President
UNITED ARROWS LTD.

Privacy Policy for GDPR

This Privacy Policy sets forth the policy which will be applied with respect to the processing of Personal Data concerning data subjects in the European Economic Area (“EEA”) in accordance with the General Data Protection Regulation (“GDPR”).

1. Types of Personal Data

In this Privacy Policy, “Personal Data” means any data relating to an identified or identifiable natural person. We may collect and process the following types of Personal Data.

(1) Personal Data that you provide to us

When exchanging business cards or contact information, we collect and process the Personal Data that you provide to us, including your company name, company address and department name, name, telephone number, mobile phone number and email address.

(2) Personal Data that we obtain from other sources

When you buy our products through the internet, we collect, process and share Personal Data including name, gender, age, address, member ID, registered country, selected language, details of products purchased (including, product name, purchase volume, price, composition, country of origin and HS code), order number, date of order, invoice number and freight cost, from our online trading platform.

2. Collection, use and disclosure of Personal Data

(1) Purposes of use of Personal Data

We collect, process and provide your Personal Data in order to achieve the purposes notified individually to you or set forth below. The legal basis for such processing is noted in brackets.

・For contact:

- to communicate with you concerning business transactions (consent and legitimate interest in maintaining our business relationship with you).

・For selling our products through the internet:

- to confirm your order, deliver products to you and collect payments from you (consent and performance of contract);
- for accounting (consent and legitimate interest in running our business);
- for tax affairs (consent and legitimate interest in running our business);
- to provide after-sales service, including return of products (consent and performance of contract);
- to send you marketing communications and personalized offers (consent and legitimate interest in running our business); and
- to provide the Personal Data to third parties as set forth in this Privacy Policy (consent and legitimate interest in running our business).

(2) Additional processing

In the case of processing the Personal Data for purposes other than the above, we will notify you in advance of such purposes of use and other matters as required by applicable laws.

(3) Consent

We will process the Personal Data on the basis that processing is necessary for the performance of a contract to which you are a party, for the purposes of the legitimate interests pursued by us, as well as on the basis that you have provided consent for us to do so when you indicated your acceptance of this Privacy Policy.
You may withdraw such consent at any time; provided, however, that this will not affect the lawfulness of any processing carried out before your withdrawal of such consent.
In obtaining Personal Data from you under the age of twenty (20), we will, at all times, ask for your guardian’s consent or the consent authorized by the guardian. In the event that anyone under the age of twenty (20) wishes to buy our products, we ask them to make sure that consent is given or authorized by their guardian.

(4) Necessity of providing Personal Data

The Personal Data that you are to provide is necessary in order for us to provide our services to you. Therefore, there may be cases where you will not be able to use the services if you have not provided such Personal Data to us.

(5) Retention period

We will retain your Personal Data for as long as such data is necessary to provide the services to you, but we will promptly delete the same in the case such data is no longer needed.

(6) Transfer of Personal Data

We may provide your Personal Data to third parties such as our subsidiaries and affiliates, cloud vendors, outside contractors and professionals (including tax firms and law firms), etc., and your Personal Data will be processed by such third parties in order to carry out the purposes of use specified above.
As a result, your Personal Data may be transferred to entities in countries or jurisdictions outside the EEA (including, without limitation, Japan).
Please note that such countries or jurisdictions may not have the same data protection laws as the EEA, and many of the rights provided to data subjects in the EEA will not be given. In addition to the above, in the case that we provide your Personal Data to any third party located in a country or jurisdiction outside the EEA, we will ensure that adequate measures are taken concerning the protection of your Personal Data.

3. Data subject’s rights

You may make a request to us for access to, correction or deletion of, or restriction of processing of your Personal Data, and may make a request for data portability with regard to your Personal Data retained by us. When we receive a request based on the right specified above, we will conduct any necessary investigation without delay and provide you or a nominated third party with the Personal Data or respond to such rights without delay.
Please note that you may raise an objection to the data protection authorities having jurisdiction over us or the location of your domicile with regard to the processing of your Personal Data.

4. Inquiries

If you have any questions or concerns regarding this Privacy Policy or our processing of Personal Data, or any requests concerning the access to, rectification or erasure of, or restriction of processing of Personal Data, or with regard to data portability, please contact us at the following:

UNITED ARROWS LTD.

[Department] Customer Support
[Address] 3-28-1 Jingumae, Shibuya-ku, Tokyo 150-0001 Japan
[Email address] CS-GDPR@united-arrows.co.jp
[Phone number] +81-3-5785-6325

5. Revision of this Privacy Policy

We may change the contents of this Privacy Policy when necessary. We will announce the revised Privacy Policy on this website when a revision is made. Please make sure to regularly check the contents of this Privacy Policy.
After the policy is revised, you shall be deemed to have agreed to the revised policy when you use our services or view this Privacy Policy.

Effective date: October 1, 2018
UNITED ARROWS LTD. President/CEO:Mitsuhiro Takeda

個人情報に関するお問い合わせは、
お客様相談室(フリーダイヤル 0120-011-031 土曜、日曜、年末年始を除く 午前10時~午後6時30分)
までお願いいたします。