EU Personal Data Processing Policy

In order to strictly protect personal information obtained from customers (hereinafter referred to as “EU Personal Data”), Kintetsu Railway Co., Ltd. (hereinafter referred to as “Our Company”) is implementing the following measures.
The personal data subject to this policy is the personal data in the European Economic Area.

 1. EU Personal Data Protection Measures Implemented by Our Company
The principles of EU Personal Data protection measures implemented by Our Company are as follows:
1) Our Company properly manages EU Personal Data. 2) Our Company positions an EU Personal Data Manager at each Department managing EU Personal Data, and ensures that the Manager properly manages EU Personal Data. 3) EU Personal Data processed by Our Company mainly consists of names, e-mail addresses, telephone numbers, and addresses of customers. In addition, to provide customers with services and other items according to their request, Our Company may acquire various other information from customers, which is, except for minimum required items of information, provided sheerly out of customers’ own free will. 4) In order to securely store EU Personal Data, Our Company has reviewed company regulations, and implements periodical employee training and audits with respect to EU Personal Data protection. 5) In the event that customers wish to access or rectify their EU Personal Data, Our Company will first make certain such requests are made by the relevant customer identified with such EU Personal Data, and will respond to such requests in reasonable time and scope. 6) In Our Company’s webpages “cookies” may be used for providing customers with better services. A cookie is a file stored in the PC (Personal Computer) used by a viewer of Our Company’s website. Customers can configure their net browsers so that receipt of any cookie is rejected, but in that case, customers may not be able to use a certain part of our services. 7) Our Company will comply with all the laws and regulations applicable to EU Personal Data, and review and improve the measures stated hereinabove as need be. In case of accidents and other similar events, Our Company may provide to the police and/or relevant agencies on their demand, materials containing EU Personal Data required for investigations.
 2. Purposes of Processing EU Personal Data
Our Company will use EU Personal Data provided by customers for communicating with customers, as well as providing customers with services, to the extent necessary for accomplishing such purposes.
If customers refuse to provide Our Company with their EU Personal Data, and as a result, Our Company cannot obtain information essential to perform contracts regarding provision of services, Our Company may be hindered from providing customers with services, which may result in loss or damages being incurred by customers.
 3. Legal Basis for Processing EU Personal Data
Our Company shall deal with EU Personal Data only if Our Company obtains consent from the customer or any of the following cases applies:
1) When processing is necessary for the performance of the contract where the customer is a party concerned, or when processing is necessary in accordance with customer’s request made before the contract is entered into; 2) When processing is necessary to comply with legal obligations by which Our Company is bound; 3) When processing is necessary to protect the vital interests of customers or other individuals; or 4) When it is deemed appropriate to investigate, prevent, or take measures against actual illegal acts or alleged illegal acts.
 4. Special Categories of EU Personal Data
In order to provide customers with services meeting their requests, Our Company may collect and use customers’ special categories of EU Personal Data (health conditions, physical characteristics, and alike) with the customer’s consent for processing such information, and only to the extent necessary for accomplishing the purposes and as allowed by applicable law.
 5. Transfer of EU Personal Data
Our Company may store EU Personal Data obtained from customers in our database servers located in Japan. Our Company shall appropriately manage customers’ EU Personal Data.
 6. Safety Measures for EU Personal Data Management
In order to properly manage EU Personal Data of customers, to prevent the same from leakage, loss, or damage, and to perform other means of safety management, Our Company shall implement technical and organizational safety measures.
 7. Deletion and Disposal of EU Personal Data
Our Company shall appropriately and promptly delete and dispose of EU Personal Data which no longer needs processing.
 8. Customer’s Rights Regarding EU Personal Data
Customers shall be entitled to the following rights regarding EU Personal Data concerning themselves:
1) Right to access customer’s EU Personal Data and relevant data; 2) Right to have rectified any inaccurate EU Personal Data without unreasonable delay; 3) Right to have EU Personal Data on customers erased without unreasonable delay; 4) Right to have restricted processing of EU Personal Data regarding customers; 5) Right to receive EU Personal Data provided by the customer in a commonly-used and machine-readable form, and to transmit EU Personal Data to the custody of other organizations without hindrance; 6) Right to object to the processing EU Personal Data in the interest of the public, Our Company, or third parties, and/or for the purpose of direct marketing; 7) Right to withdraw their consent for our use of EU personal data at any time; and 8) Right to lodge a complaint with a supervisory authority.
 9. Disclaimer
Any use of the present website shall be on customers’ own responsibility.
Our Company shall be, by no means, held responsible for any damages arising out of use of information obtained from the present webpages, or other webpages connected through links provided on the present webpages.
10. Governing Law
The present website is under control of Our Company.
Although the present website can be accessed from countries all over the world, any customers accessing the present website and Our Company shall be bound by the laws of Japan with respect to use of the present website, regardless of any differences of their respective legal principles.
Our Company makes no statement or indication on the present website as to appropriateness and/or other aspects of any contents of the present webpages for users’ PC environments. Any access to the present webpages shall be entirely of the customer’s free will, and customers are responsible for any use of our webpages.
11. Person in Charge of Protection and Management of Personal Information
Our Company has appointed the Director in charge of the General Affairs Department as the person in charge of protection and management of personal information. Contact information is as follows:
6-1-55, Uehommachi, Tennoji-ku, Osaka City, Osaka 543-8585 Japan
Phone Number: +81-6-6775-3355

For any questions on this ‘EU Personal Data Processing Policy’ and relevant matters, please contact the person in charge at the Inquiry Desk shown below:

< Inquiry Desk >
EU Personal Data Management Officer
General Affairs Department, Kintetsu Railway Co., Ltd.
6-1-55, Uehommachi, Tennoji-ku, Osaka City, Osaka 543-8585 Japan
Phone Number: +81-6-6775-3355 (EU Personal Data Inquiry Desk)
Reception Hours: 9:10 - 18:00 (excluding Saturdays, Sundays, Holidays, and from 30 Dec. to 3 Jan.)

Back to the top of the page