Privacy Policy｜JEIS - JR East Information Systems Company

Personal Information Protection Policy

As the technology organization supporting the information and communications technology of JR East and its group companies, JR East Information Systems Company (hereinafter "JEIS") shall acquire and utilize personal information appropriately based on full awareness of its social mission with relation to the handling of personal information in its business activities, and shall protect personal information by storing it in a safe and updated state and disposing of it as appropriate.

（1）Compliance with laws and regulations: JEIS shall comply with laws and regulations related to the protection of personal information.

（2）Establishment of internal systems and formulation of internal rules: JEIS shall protect personal information by establishing organizational management systems, including the assignment of persons in charge, as well as formulating and observing internal rules for the appropriate management of personal information that it acquires, utilizes, and/or supplies in its business activities.

（3）Acquirement and use of personal information: When acquiring personal information, JEIS shall clarify the purpose of and obtain consent for the information's use. JEIS shall handle acquired personal information appropriately within the scope of the stated purpose of use. JEIS shall also implement measures necessary for this end.

（4）Use of entrusted personal information: JEIS shall utilize personal information that has been entrusted to it within the scope of the relevant operation (e.g., data processing, etc.).

（5）Management of personal information: JEIS shall implement appropriate measures to prevent the leakage, falsification, loss, or destruction of personal information by clearly establishing managers' responsibilities based on internal rules concerning the handling of personal information. Additionally, JEIS shall provide appropriate management and supervision in the event that it entrusts the handling of personal information. Furthermore, JEIS shall immediately take corrective measures in the event that an inadequacy in its measures or management is discovered.

（6）Handling of disclosures, etc.: In the event that it receives a request from the owner of personal information to provide notification of purpose of use, disclose, correct, or terminate usage of his or her personal information, JEIS shall respond within a reasonable time period and within the scope stipulated by laws and regulations.

（7）Continuous improvement: JEIS shall make continuous improvements by periodically checking whether or not personal information is being handled appropriately based on its internal rules and reexamining its systems for managing the protection of personal information.

（8）Establishment of an Inquiries Desk: JEIS shall establish an Inquiries Desk that will swiftly respond to demands for disclosure or other action, complaints, and consultations concerning personal information. Details on the Inquiries Desk are provided below.

Enacted on April 1, 2005

Revised on March 12, 2015

Masatoshi Kawai, President

JR East Information Systems Company

About our Chief Privacy Officer

We have established the position of Chief Privacy Officer as an officer invested with all necessary responsibilities and authority concerning the personal information that we handle. Under the leadership of the Chief Privacy Officer, we strive as an organization to protect personal information through the implementation, operation, and review of management systems for protecting personal information.

Chief Privacy Officer

ICT Infrastructure Division Manager & Senior Vice President

JR East Information Systems Company

Personal Information Inquiries Desk

Please contact the office mentioned below concerning requests for disclosure or other action, complaints, or other matters concerning personal information.

Personal Information Inquiries Desk, JR East Information Systems Company

email：privacy-info@inet.jeis.co.jp (Reception hours: Weekdays, Excluding national holidays and company-specific holidays, 10:00 A.M. to 12:00 P.M. and 1:00 P.M. to 5:00 P.M.)

Purpose of Use of Personal Information

（1）Personal Information Obtained under Client Contracts: We use this information for designing, developing, and operating computer systems for which the client has contracted our services.

（2）Personal Information of Clients and Business Partners: ① Personal information is used to contact clients and business partners, cooperate, negotiate, execute contracts, request execution, and manage entry to and exit from our facilities.
* This personal information is disclosable personal information.
② We may record the content of a call from our specific clients and business partners to improve our service quality.
In both cases, we may entrust the above-mentioned personal information to a third party as necessary for the above-mentioned purposes.

（3）Personal Information of Individuals Seeking Employment with Our Company: We use this information to contact said individuals, provide information to them, carry out applicant screening, and improve our recruitment process going forward. Some of these duties may be contracted to third parties.
* This personal information is disclosable personal information.

（4）Personal Information of Inquiries: Personal information which is entered into an inquiry form will be solely used for answering the inquiry.
* This personal information is disclosable personal information.