Toyo Seikan Co., Ltd. (the "Company") has established this policy as a guideline for protecting personal information of its consumers, business partners, suppliers, affiliated companies, shareholders, executive officers, employees and other individuals (hereinafter referred to as the "person in question") held by the Company to fulfill its social responsibility as a packaging manufacturer, and to earn the trust of its stakeholders and customers.
1. Acquisition of Personal Information
The Company will acquire personal information in a lawful and fair manner.
2. Notification of Purpose of Use
When obtaining any personal information, the Company will basically specify in advance for which purpose the information will be used.
3. Use of Personal Information
The Company shall handle personal information to the extent possible to achieve the intended purpose of use previously specified, and shall not provide personal information to a third party without consent from the person in question.
4. Shared Use of Personal Information
When the Company needs to share personal information with a third party, it will obtain a prior consent from the person in question.
5. Security Measures for Personal Information
The Company will endeavor to keep personal information accurate and up-to-date to the extent required to achieve the purpose of use. In addition, the Company shall implement proper security measures to prevent personal information from being leaked, lost or damaged, etc.
6. Supervision of Employees and Outsourced Parties
The Company will ensure necessary and appropriate supervision of its employees to securely manage personal information. In addition, when entrusting the handling of personal information to a third party, the Company shall perform necessary and appropriate supervision of the outsourced party to ensure the security of outsourced personal information.
7. Disclosure of Personal Information
When any person in question requests the Company to inform the purpose of use, disclose, correct, add or delete his/her personal information, or discontinue its use or provision to a third party, the Company will address faithfully in accordance with applicable laws and regulations.
8. Contact for Complaints
The Company will set up a contact point to receive complaints, inquiries, etc. for the handling of personal information and respond to them faithfully.
9. Organization for Personal Information Protection
The Company will assign Chief Privacy Officer (CPO) from Directors and Operating Officers, organize the Personal Information Protection Committee and manage personal information in an appropriate manner.
10. Establishment of Internal Rules for Personal Information Protection
The Company will establish internal rules for personal information protection to implement this policy, thoroughly disseminate them to its officers and employees, audit the implementation status from time to time, and make necessary improvements.
11. Education and Training Programs
For ensuring appropriate management of personal information, the Company will provide education and training programs to its officers and employees for promoting their awareness of this policy and internal rules.
12. Compliance with Applicable Laws and Regulations
The Company shall comply with the “Act on the Protection of Personal Information” and other applicable laws and regulations and endeavor to protect all personal information.
April 1, 2013