TresCreo Consulting Inc. (hereinafter referred to as “the Company”, “We”) considers that the proper handling of personal information we acquire during our business activities is one of the most significant social responsibilities not only in terms of complying with the law but also earning the trust of all concerned parties.
In order to fulfill this responsibility, we shall endeavor to ensure the appropriate handling of all personal information we acquire.
TresCreo Consulting Inc.
11335 NE 122nd Way Suite 105, Kirkland, WA, 98034
Founder & Chief Executive Officer
Teppei Tokura
1. Compliance
The Company shall comply with all domestic and foreign laws and regulations regarding the protection of personal information, as well as guidelines established by domestic and foreign administrative agencies.
2. Acquisition and utilization of personal information
The Company shall acquire personal information by legal and fair means. We shall appropriately notify or disclose to the public the utilization purpose of personal information and shall handle personal information appropriately to the extent necessary to achieve the utilization purpose.
3. Security Control Measures
The Company shall, in order to properly manage the personal information, take appropriate organizational, personnel, physical and technical security control measures and shall work to prevent and correct the leakage, loss or damage of personal information.
In addition, when outsourcing the handling of personal information to an external supplier, we shall select a supplier who meets the standards for the appropriate protection of personal information, stipulate in contracts and other agreements that the protection standards required by the Company shall be adhered by the supplier etc., monitor the status of personal information handling by the supplier in a timely manner and supervise the supplier appropriately. Furthermore, in the event that the Company or a supplier handles personal information outside of Japan, we shall take necessary and appropriate measures for security control after understanding the regulations concerning the protection of personal information in the country.
4. Provision to or joint use with third parties
The Company shall not, except as stipulated by laws and regulations, provide the acquired personal information to a third party without obtaining the consent of the principal. In addition, except as stipulated in laws and regulations, when the Company provides personal information to a third party, we shall prepare and maintain a record of the matters as specified by laws and regulations regarding the provision. Similarly, when the Company obtains personal information from a third party, we shall confirm that the legal requirements for personal information acquisition are satisfied and shall prepare and maintain the record.
5. Disclosure, correction and Utilization Cease etc.
The Company shall, in cases where a principal or its agent requests disclosure, correction, addition, deletion, cessation of the utilization or cessation of third-party provision with regard to the retained personal information, respond to any requests appropriately in accordance with laws and regulations.
6. Handling of Individual Numbers and Specific Personal Information
The Company shall, in compliance with the “Act on the Use of Numbers to Identify a Specific Individual in Administrative Procedure” and other related laws, regulations and guidelines, handle Individual Numbers (so-called “My Number”) and Specific Personal Information (personal information including Individual Numbers).
7. Continuous improvement
The Company shall review its management structure for the handling of personal information protection and make continuous efforts to improve the security control measures to meet the requirements for future changes in social conditions and the environment.