Privacy Policy

JAPAN POST BANK has established the following privacy policy and conducts business operations based on this policy. We recognize that protecting personal information, including specific personal information and Individual Number (hereinafter 'personal information'), is vital to offering services that can achieve a high degree of customer satisfaction.

When handling personal information, we comply with all laws and regulations associated with protecting personal information, national government policies, and this privacy policy.

We specify the purpose of using personal information and, except in cases where required by laws or regulations, do not use the information other than for achieving this purpose.
In the case of specific personal information, notwithstanding the above, we specify the purpose of use within the limits of the administrative operations indicated in advance by laws and regulations, and, except in cases where required by laws or regulations, use the information solely for this purpose.

In addition, we will not use personal information in an inappropriate manner that may encourage or induce illegal or improper activities.

We acquire personal information using methods that are legal and proper and solely for the purposes listed in the above item.

We use an appropriate safety management system to prevent losses, alterations, or leaks of personal information. In addition, we properly supervise employees and outsourcing partners.

Specifically, we have implemented the following security control measures for retained personal information.

In order to ensure the proper handling of retained personal information, we have formulated a basic policy regarding "compliance with relevant laws, regulations, guidelines, etc." and "contact offices for questions and complaints," etc.

We have formulated rules for the handling of retained personal information, including handling methods, responsible persons and persons in charge, and their duties at each stage of acquisition/input, use/processing, storage/preservation, and transfer/transmission.

A person responsible for the handling of retained personal information has been appointed, and a reporting and liaison system has been established for reporting to the person responsible in the event that laws, regulations, or handling rules have actually been violated or there are indications thereof.
We conduct periodic self-inspections of the status of handling of retained personal information, and audits are conducted by other departments and outside parties.

Regular training is provided to employees on matters to be aware of regarding the handling of retained personal information.
Matters related to confidentiality of retained personal information are stated in employment regulations, etc., and we regularly communicate with and conduct training for all employees about this.

In the areas where retained personal information is handled, we control employee access, restrict devices, etc. they may bring in, and implement measures to prevent unauthorized persons from accessing retained personal information.
We take measures to prevent theft or loss of devices, digital media, and documents that contain retained personal information, and we implement measures to prevent personal information from being easily identified when such devices, digital media, etc. are carried, including within our offices.

Access controls are implemented to limit the scope of employees and databases that handle personal information.
We have introduced platforms that protect information systems that handle personal information from unauthorized access from outside or unauthorized software.

We implement security management measures based on our understanding of the systems for protecting personal information in foreign countries where retained personal information is handled.
A list of names of foreign countries that handle retained personal information is available on our website.

We provide necessary and appropriate supervision to ensure that employees who handle retained personal information comply with security control measures, such as by stipulating matters concerning confidentiality in employment regulations, etc., providing education and training, and conducting inspections and audits of the handling status of personal information.

In the event that all or part of the handling of retained personal information is outsourced, we will enter into a contract with the outsourcing partner to ensure that it takes measures equivalent to the security control measures we are required to take, and we will exercise appropriate supervision through periodic monitoring, etc.

Except in cases where required by laws, regulations, etc., we do not supply personal information to third parties without the prior consent of each individual. In cases where we share personal information with other parties, this sharing is performed only after providing prior notice or public announcements of items required by law.
In the case of specific personal information, notwithstanding the above, we do not supply data to, or share data with, third parties except in cases where required by laws or regulations.

We respond in a sincere manner to requests for the notification of the purpose of use or for the disclosure, correction, or termination of use of personal information as prescribed by laws and regulations.

Requests of the kind mentioned in the above item concerning customer personal information held by JAPAN POST BANK, as well as other opinions, requests, or inquiries concerning the handling of personal information, should be addressed to the contact indicated below.

We constantly review and improve our management and handling methods for the protection of personal information in response to advances in information technology and shifts in social demands.

Date of revision: April 2024
Takayuki Kasama
President and Representative Executive Officer
JAPAN POST BANK
2-3-1 Otemachi, Chiyoda-ku, Tokyo