Matters Published Pursuant to the Act on the Protection of Personal Information

As the use of personal information significantly expands in association with the development of an advanced information and communications society, Tokyo International Air Terminal Corporation (hereinafter referred to as “our company” or “we”) will appropriately handle personal information and take necessary and appropriate steps concerning security management based on the philosophy of the Act on the Protection of Personal Information (hereinafter referred to as “the Act”), which states that personal information must be handled with care under the philosophy of respecting personalities of individuals.

We will build and engage in the improvement of a management system for securely managing personal information.

You can find our address and the name of our representative in the following URL.
https://www.tokyo-airport-bldg.co.jp/corporate_profile/profile.html

  1. Person responsible

    We will appoint a person responsible for the protection of personal information, and appropriately handle and securely manage personal information.

  2. Acquisition of personal information
    1. We will acquire personal information to the extent necessary for operations, using legal and fair means.
    2. When acquiring personal information requiring special consideration, we obtain the customer's consent in advance except in cases permitted by laws and regulations.
  3. Purpose of use of personal information

    We will only use the personal information acquired to the extent necessary for the following purpose of use and will not use it beyond the scope of this purpose. When changing the purpose of use, we will only perform this to the extent rationally deemed to have relevance to the purpose of use prior to the change, and we will notify the customer or publicly announce the changed purpose of use in such case.

    1. To fulfill our obligations, exercise our rights, and various other activities associated with doing so in relation to the management and operation of Tokyo International Airport (Haneda) passenger terminal building facilities.
    2. To keep records and prepare for emergency situations including crime prevention and unforeseen accidents, as regards video recordings made by video cameras installed in Tokyo International Airport (Haneda) passenger terminal building facilities, stores and parking lots, and audio recordings of telephone calls from customers to our Disaster Prevention Center and Customer Service Center.
    3. To provide and describe our products and services.
    4. To respond to customer inquiries, and improve our business activities based on opinions, requests and complaints from customers.
    5. To mail and/or deliver products ordered by customers (including pamphlets, etc.) and various other activities associated with doing so.
    6. We will analyze the acquired information, such as browsing history and purchase history and use it for advertising new products and services based on the customer's interests and preferences.
    7. Regarding the personal information of shareholders
      • To exercise our legal rights and fulfill our legal obligations.
      • To provide various conveniences to those with the status of shareholder.
      • To implement various measures to make our relationship with shareholders go smoothly from both group member and group perspective.
      • To manage shareholders, such as the creation of shareholder data based on criteria determined based on various laws and regulations.
  4. Provision of personal data to third-parties

    We do not provide personal data to third parties without the consent of our customers, except in the following cases.

    1. When permitted by law
    2. When handling of personal data is being entrusted to a third-party to the extent necessary for achieving the purpose of use (In this case, we carry out necessary and appropriate supervision of the entrusted party to ensure that the personal data entrusted to them is managed securely.)
    3. When being used jointly with our group companies (See below under “5. Joint use of personal information with group companies”)
  5. Joint use of personal information with group companies

    We and our group companies (see below) may jointly use personal information related to customers among our companies as follows to inform our customers of and improve and promote the products and services we offer. Information subject to joint use includes names, addresses, telephone numbers (including mobile phone and facsimile numbers), e-mail addresses, corporate and organization names, department names, position titles, employer addresses, and other contact information, in addition to sex, date of birth, transaction history, information obtained through surveys, and other information. Although we are the party responsible for managing the personal information of our customers that may be used jointly, group companies also strictly manage personal information at the same level as our company.

    [Group companies]
    • Tokyo International Air Terminal Corporation
    • Tokyo Airport Restaurant Co., Ltd.
    • Japan Duty Free Fa-So-La Isetan Mitsukoshi Co., LTD.
    • Cosmo Enterprise Co., Ltd.
    • INTERNATIONAL TRADE INC.
    • Japan Airport Logitem Co.,Ltd.
    • Big Wing Co., Ltd.
    • Japan Airport Techno Co., Ltd.
    • Air Bic Camera INC.
    • Haneda Airport Enterprise Co., Ltd.
    • Haneda Airport Security Co.,Ltd.
    • Haneda Passenger Service Co., Ltd.
    • Japan Airport Ground Handling Co., Ltd.
    • Haneda Future Research Institute Incorporated
    • Sakura Shokai Co., Ltd.
    • Hamashin Co., Ltd.
    • KAIKAN KAIHATSU Co., Ltd.
    • Japan Airport Terminal Trading (Chengdu) Co., Ltd.
    • LANI KE AKUA PACIFIC, INC.
  6. Disclosure of personal data

    When a customer requests to disclose, correct, add, and delete personal information, or requests to stop providing personal information to third parties and disclose records related to the provision of personal information to third parties (hereinafter referred to as "Disclosure of personal data"), we will promptly respond to the request as soon as reasonably possible after confirming the request is made by the customer, in accordance with the provisions of the Act on the Protection of Personal Information.

  7. Management of personal information
    1. We strive to keep personal information accurate and up-to-date to the extent necessary to achieve our purpose of use and to delete personal information without delay when its use is no longer required.
    2. We will take appropriate measures necessary to prevent leakage, loss, or damage to personal information and otherwise manage it securely.
    3. To handle personal information appropriately, we will supervise our employees as deemed necessary and appropriate.
    4. To prevent leakage, loss, or damage of personal information and take other necessary and appropriate measures to securely manage personal information (hereinafter referred to as ""security management measures""), we will establish rules such as rules on handling the personal information. We will also apply the following organizational, personal, physical, and technical security management measures in accordance with the relevant laws, regulations, and the “Guidelines for Proper Handling of Specific Personal Information (for Private Entities).
      (1) Organizational security management measures
      • We will appoint a personal information protection officer while clearly defining the responsibilities and authorities of employees to manage personal information securely.
      • We have a reporting system that allows for the reporting of leaks or other violations of internal regulations when they are detected.
      (2) Personal security management measures
      • We regularly conduct personal information protection training for employees and maintain a system to ensure that employees comply with internal rules and manuals.
      (3) Technical security management measures
      • We manage access to personal information (E.g., access permissions, monitoring of access status, management of IDs and passwords, access control).
      • We implement anti-virus measures and countermeasures to prevent unauthorized access from outside sources.

Basic Policy on Appropriate Handling of Specific Personal Information

Tokyo International Air Terminal Corporation (hereinafter referred to as “our company” or “we”) has specified the following basic policy for efforts as an organization concerning ensuring the appropriate handling of specific personal information, etc.

  1. Name of business operator

    Japan Airport Terminal Co., Ltd.

  2. Compliance with relevant laws, regulations, guidelines, etc.

    We appropriately handle specific personal information in compliance with the Act on the Use of Numbers to Identify a Specific Individual in Administrative Procedures (Act No. 27 of 2013; hereinafter referred to as “Numbers Act”), the Act on the Protection of Personal Information (Act No. 57 of 2003; hereinafter referred to as “Personal Information Protection Act”) and the “Guidelines for Proper Handling of Specific Personal Information (for Private Entities)”.

  3. Purpose of use of individual numbers

    (1) We use the individual numbers (meaning individual numbers as defined under the Act on the Use of Numbers to Identify a Specific Individual in Administrative Procedures; hereinafter referred to as “individual numbers”) of business partners for the following purpose.

    • Processes for the creation of payment records for remuneration, fees, etc.

    (2) We use the individual numbers of officers and employees and the dependent family members of officers and employees for the following purposes:

    1. Processes for the creation of withholding records for wage income and retirement income
    2. Processes related to local taxes
    3. Processes for the creation of notifications, applications, requests and certificates pursuant to the Employment Insurance Act
    4. Processes for notifications, applications and requests pursuant to the Health Insurance Act and the Employees' Pension Insurance Act
    5. Processes for the creation of notifications, applications, requests and certificates pursuant to the Industrial Accident Compensation Insurance Act
    6. Processes related to the item (iii) insured person system under the National Pension Act
    7. Processes for submitting declarations, written notices and application forms related to asset-formation housing savings and asset-formation pension savings
    8. Processes for notification of payment records of the Japan Airport Terminal Employee Shareholding Association for members thereof
    9. Processes related to Inheritance Tax Act
    10. Processes related to the payment of benefits that are pensions or lump sum payments under the Defined-Benefit Corporate Pension Act
  4. Matters related to security management measures

    We have established regulations, etc. on the handling of specific personal information in relation to security management measures for specific personal information, and take organized security management measures, personal security management measures, physical security management measures and technical security management measures according to the “Guidelines for Proper Handling of Specific Personal Information (for Private Entities)”.

  5. Ongoing improvements

    We strive to make ongoing improvements to the handling of specific personal information, etc.

Contact for Inquiries Concerning the Above Information

Please inquire using the following contact details if you have any questions, inquiries, consultations, opinions, complaints, etc. concerning our company’s handling of personal information or specific personal information.

[Inquiries by telephone]
Person responsible for protection of personal information and specific personal information
Legal Affairs Division, General Affairs & Human Resources Division, General Affairs Group, Planning & Administration Department, Japan Airport Terminal Co., Ltd. 03-5757-8040
[Inquiries by mail]
Person responsible for protection of personal information and specific personal information
Legal Affairs Division, General Affairs & Human Resources Division, General Affairs Group, Planning & Administration Department, Japan Airport Terminal Co., Ltd.
3-3-2 Hanedakuko, Ota-ku, Tokyo (Tokyo International Airport)
144-0041

Please understand that we cannot accommodate direct visits to our corporate offices.

GDPR Privacy Policy

Tokyo International Air Terminal Corporation (hereinafter referred to as “our company” or “we”) has specified the following GDPR Privacy Policy (hereinafter referred to as “Policy”) pursuant to the applicable privacy laws and regulations, etc. concerning the processing of personal data to which the applicable privacy laws and regulations, etc. apply that is collected on the website (hereinafter referred to as “Website”) operated by our company.

  1. Protection and management of personal data

    We collect personal data (See “3. Personal data collected” below) of users of the Website (hereinafter referred to as “Users”) to the extent required for smooth operation of services provided on the Website (such as provision of information through the Website, receipt of various opinions and sale of products through the Website). We handle collected personal data appropriately to the extent required for the purpose of use (See “4. Purpose of use of personal data and grounds therefor” below).

  2. Definitions of terms

    The terms used in the Policy are defined as follows.

    Table Title
    Term Definition
    Applicable privacy laws and regulations, etc. The General Data Protection Regulation and related privacy laws, regulations, rules etc. including laws enforced by each country.
    Personal data Information related to an identified natural person or identifiable natural person (“data subject”)
    Processing Action performed on personal data (such as the collection, recording, editing, storage, restoration, referral, use, disclosure/provision, arrangement, restriction or deletion of data).

    The definitions of terms used in the Policy shall be in accordance with the definitions of the applicable privacy laws and regulations, etc. except where otherwise provided for in the Policy.

  3. Personal data collected

    We collect the following personal data on Users.

    • Logs of access to the Website (IP addresses, Cookies, mobile device identifying information (such as Android advertising identifiers and iOS advertising identifiers), etc.)
    • Information on posts of inquiries and opinions by Users of the Website (name, e-mail address, content of inquiry or opinion, etc.)
    • Information on the sale of products through the Website (purchaser name, address, telephone number, e-mail address, sex, date of birth, password, credit card information, purchase history, product delivery destination, etc.)
  4. Purpose of use of personal data and grounds therefor

    We collect and use personal data for the following purposes pursuant to the legal grounds stated in the respective parentheses.

    • Page control, customization and analysis of access on the Website (legitimate interest)
    • Responses related to inquiries and opinions from Users of the Website, and improvement of the Website and services provided by our company (legitimate interest, legal obligation)
    • Security measures for the servers on which the Website is operated (legitimate interest)
    • Handling of deliveries, billing ,etc. related to the sale of products through the Website (legitimate interest, legal obligation)
  5. Refusal of provision of personal data

    The provision of personal data of Users is required for viewing the Website. If you are unable to provide personal data, we may be unable to provide all or part of the services.

  6. Technology used for the collection of personal data When acquiring personal data, we use Cookies and mobile device identifying information (such as Android advertising identifiers and iOS advertising identifiers) on the Website.
    • A. We use Google Analytics on the Website for keeping track of the state of use of the Website. When using Google Analytics, we may use Cookies, Web beacons or other similar technologies, and Google Inc. uses these to collect, record and analyze information on Users of the Website. See “HOW GOOGLE USES INFORMATION FROM SITES OR APPS THAT USE OUR SERVICES” for details. Furthermore, see the Google Analytics website for an explanation on the terms of service of Google Analytics and the website of Google Inc. for an explanation of Google’s privacy policy.

    • B. We use Cookiebot, which is a GDPR compliance information analysis service provided by Cybot, for the purpose of restricting the acquisition of information by Cookies while Users have not provided consent for acquisition of information using Cookies on the Website, acquiring information on consent to Cookies and analyzing the status of consent to Cookies. When using Cookiebot, information on consent to Cookies is acquired, and Cybot performs analysis of the status of consent to Cookies by Users of the Website.
  7. Disclosure and provision of personal data
    • A. We may share personal data with our group companies (see below) in accordance with applicable privacy laws and regulations, etc. Furthermore, we may entrust specific operations to an outside party to the extent required for achieving the purpose of use stated in the Policy, and disclose or provide personal data to that party to the extent required for processing the operations. In this case, we carry out necessary and appropriate supervision of the entrusted party to ensure that the personal data entrusted to them is managed securely.

      [Group companies]
      • Tokyo International Air Terminal Corporation
      • Tokyo Airport Restaurant Co., Ltd.
      • Japan Duty Free Fa-So-La Isetan Mitsukoshi Co., LTD.
      • Cosmo Enterprise Co., Ltd.
      • INTERNATIONAL TRADE INC.
      • Japan Airport Logitem Co.,Ltd.
      • Big Wing Co., Ltd.
      • Japan Airport Techno Co., Ltd.
      • Air Bic Camera INC.
      • Haneda Airport Enterprise Co., Ltd.
      • Haneda Airport Security Co.,Ltd.
      • Haneda Passenger Service Co., Ltd.
      • Japan Airport Ground Handling Co., Ltd.
      • Haneda Future Research Institute Incorporated
      • Sakura Shokai Co., Ltd.
      • Hamashin Co., Ltd.
      • KAIKAN KAIHATSU Co., Ltd.
      • Japan Airport Terminal Trading (Chengdu) Co., Ltd.
      • LANI KE AKUA PACIFIC, INC.
    • B. We use Google Analytics provided by Google, Inc. to track the status of access to web pages on the Website for the purpose of improving the content of web pages as stated in “6. Technology used for the collection of personal data” above. We may disclose or provide personal data to Google, Inc. when using Google Analytics.
    • C. We use Cookiebot, which is a GDPR compliance information analysis service provided by Cybot, for the purpose of restricting the acquisition of information by Cookies while Users have not provided consent for acquisition of information using Cookies on the Website, acquiring information on consent to Cookies and analyzing the status of consent to Cookies as stated in “6. Technology used for the collection of personal data” above. We may disclose or provide personal data to Google, Inc. when using Cookie Pro.
    • D. We may disclose or provide Users’ personal data to regulatory authorities and recipients of disclosure or provision specified under applicable privacy laws and regulations, etc. in order to comply with applicable privacy laws and regulations, etc.
  8. Transfer of personal data to countries outside the EU

    We store all personal data of Users in Japan for achieving the purpose of use.

  9. Retention period of personal data

    We retain personal data of Users for up to five years.

  10. Rights, etc. of Users of the Website
    • a. Users may exercise the following rights concerning personal data held by the company to the extent of the applicable privacy laws and regulations, etc.
      • The right to inquire about information on personal data (GDPR Article 15)
      • The right to demand rectification of personal data (GDPR Article 16)
      • The right to demand deletion of personal data, or “right to be forgotten” (GDPR Article 17)
      • The right to demand restriction of processing of personal data (GDPR Article 18)
      • The right to object to processing of personal data (GDPR Article 21)
      • The right to demand the transfer of personal data to the User or a third party (data portability) (GDPR Article 20)
    • b. If you wish to exercise any of the above rights, please contact us at the contact shown in “12. Inquiries”.
    • c. Personal data of the User is processed with the consent of the User, and the User has the right to withdraw consent at any time. Withdrawal of consent does not impair the lawfulness of processing based on consent prior to withdrawal. (GDPR Article 7, Paragraph 3)
    • d. In principle, when a child under the age of 16 becomes a User, consent of the holder of parental responsibility over the child is required. (GDPR Article 8)
    • e. Users have the right to lodge a complaint concerning the handling of personal information by our company with an information protection supervisory authority including the EU member state where they reside, the EU member state where they work or the member state where the violation occurred. (GDPR Article 77)
  11. Person responsible for data protection

    Person responsible for protection of personal information and specific personal information
    General Affairs and Legal Affairs Department, Planning and Management Division, Japan Airport Terminal Co., Ltd.

  12. Inquiries
    Person responsible for protection of personal information and specific personal information
    General Affairs and Legal Affairs Department, Planning and Management Division, Japan Airport Terminal Co., Ltd.
    3-3-2 Hanedakuko, Ota-ku, Tokyo 144-0041
    ​ ​
    Telephone: 03-5757-8040