Privacy Policy

Personal Information Protection Policy

JMA Consultants Inc.
Isao Ozawa, President

JMA Consultants Inc. (hereinafter referred to as the “Company”) is aware of the importance of personal information protection, and it stipulates the Personal Information Protection Policy (hereinafter referred to as the “Policy”) as stated below in order to appropriately protect personal information (including information about specific individuals) that is handled for work.

The Company will work to make board members, employees, and all other people who conduct the Company’s work (hereinafter referred to as the “Employees”) thoroughly aware of the Policy and will strive to protect personal information.

Based on the aforementioned awareness, at the Company, we will use as a base an ISMS (Information Security Management System) that has received authorization and strive to prepare an internal system for protecting personal information, operate rules, and make continuous improvements. Along with those things, the Company will comply with laws and ordinances related to the handling of personal information, the Personal Information Protection Committee’s guidelines, other standards and, if applicable, the EU’s General Data Protection Regulation (hereinafter referred to as the “GDPR”).

1. The Company's name and address, and the name of its representative

JMA Consultants Inc.
Japan Management Association Building, 3-1-22 Shibakoen, Minato-ku, Tokyo
President and Representative Director: Isao Ozawa

2. Purposes of obtaining personal information

The Company will use the information within the scope that is necessary in order to accomplish the purposes of use that have been reported to the relevant person or the purposes of use below, and it will not use the information for purposes other than those purposes.

  1. (i) For performing the work of consulting, training, seminars, events, and video streaming
  2. (ii) For information provision and sending of materials in relation to consulting, training, seminars, events, and video streaming
  3. (iii) For handling inquiries and giving notification of the necessary matters
  4. (iv) For analysis of customer trends, investigation and analysis of the development of new services, or market analysis
  5. (v) For activities for hiring employees
  6. (vi) For conducting various other types of work

3. Personal information that will be obtained

The Company may obtain the personal information below in order to accomplish the purposes of use.

  1. (i) Information related to login
    • - ID, account, and password
    • - Name and e-mail address
  2. (ii) Information related to agreements for services provided by the Company, and the state of use.
    • - The name of the company to which the person belongs, the person’s position, and the person’s name
    • - E-mail address and telephone number
  3. (iii) Information related to hiring
    • - Name and address
    • - Name of the university in which the person is enrolled
    • - E-mail address and telephone number
    • - Information that is stated in a resume or curriculum vitae
    • - Other personal identification documents (health insurance card, copy of resident card, etc.) for the purpose of conducting identity confirmation, and information included in those documents
  4. (iv) Information that will be obtained by using cookies
    • - IP address
    • - Login information
  5. (v) Information for the purpose of payment
    • - Credit card information, bank account information, information related to electronic money, and other information related to settlement will be sent to a company to which settlement work has been consigned after transition to that company’s screen has automatically been made, and credit card information will not be obtained, accessed, or retained by the Company.

4. Method of acquisition

The Company will use a method below to obtain personal information through the telephone, a document, a business card, e-mail, or the Internet.

  1. (i) Direct acquisition from the relevant person
  2. (ii) Acquisition from a party that has been entrusted with valid authority by the relevant person, such as a person responsible for dispatches for seminars, or a training secretariat

5. Agreement and withdrawal

In principle, the acquisition and use of personal information by the Company will be based on the customer’s agreement. In addition, the customer can withdraw that agreement at any time by conducting the prescribed procedures. Provided, however, that personal information provided by the customer is necessary in order to provide the Company’s services, and in a case in which we cannot receive provision of that information, the customer may be unable to use the Company’s services.

6. Retention and deletion of personal information

The Company will retain personal information as necessary throughout the period in which transactions with the customer continue. The customer can ask the Company to delete the customer’s own personal information at any time. In addition, in a case in which retained personal information is no longer necessary in light of the purposes of use, the Company will delete that personal information.

7. Safety management measures for personal information

The Company has stipulated the Policy for purposes of ensuring proper handling of personal information and complying with related laws and ordinances and with the guidelines.
The Company has appointed a general manager of information management; as the person responsible for personal information protection, it has stipulated the Regulations for Handling Personal Information as internal regulations for a system related to appropriate handling of personal information and handling for times when accidents occur, and it is complying with such matters.
In addition, the Company is taking appropriate safety management measures in order to prevent accidents, such as unauthorized access to personal information and loss, destruction, manipulation, and leaks of personal information, and it is conducting the necessary supervision for the Employees and external consigned parties.
As organizational safety management measures, the Company has appointed a person responsible for personal information protection, and it is regularly conducting examination and internal audits about the state of handling personal information based on the Policy and related internal regulations.
As human safety management measures, the Company has stated the maintenance of confidentiality for personal information in the Work Regulations, and it is conducting regular internal training.
As physical safety management measures, the Company is managing people entering and leaving rooms, restricting use of electronic devices, and stipulating measures for prevention of theft and loss of electronic media.
As technical safety management measures, the Company is restricting access to files and data and conducting security-related examinations as necessary.
In a case in which an accident that may damage the safety of personal information protection occurs, the Company will strive to prevent the spread of damage, and it will promptly implement corrective measures.
The Company will also conduct audits of the state of compliance with the Policy and, based on the results of those audits, it will strive to continuously improve the management system and safety management measures.

8. Joint use of personal information

At the Company, the customer's personal information may be shared with the Company's group companies, in order to accomplish the purposes of use.
The Company will bear liability for management of personal data that will be jointly used. The Company's name, address, and representative are as stated in 1.
The place for making inquiries concerning joint use is as stated in 16.

9. Provision of personal information to third parties

Excluding the cases below, the Company will not provide personal information to third parties.

  1. (i) Cases in which the relevant person’s agreement has been obtained
  2. (ii) Cases based on the provisions of a law or ordinance
  3. (iii) Cases in which a portion of work will be consigned to an external party within the scope that is necessary for accomplishment of the purposes of use

10. Handling of pseudonymized information

For personal information, the Company will create and handle pseudonymized information (limited to matters that comprise a database of pseudonymized information; hereinafter the same) so that it will not be possible to identify a specific individual unless a comparison is made with other information.

  1. (1) Method of creating pseudonymized information
    The Company will process personal information and continuously create pseudonymized information in accordance with the processing standards stipulated by the Act on the Protection of Personal Information, other laws and ordinances, the Guidelines on the Act on the Protection of Personal Information, and other guidelines.
  2. (2) Purposes of use of pseudonymized information
    Except for cases based on a law or ordinance, the Company shall not conduct any handling of pseudonymized information beyond the scope that is necessary for accomplishment of the specified purposes of use.
    Purposes: For analysis of customer trends, investigation and analysis for the development of new services or other market analysis
  3. (3) Safety management measures for pseudonymized information
    For pseudonymized information, the Company will prevent leaks, loss, or damage and implement other necessary and appropriate safety management measures for the purpose of management in accordance with the processing standards stipulated by the Act on the Protection of Personal Information, other laws and ordinances, the Guidelines on the Act on the Protection of Personal Information, and other guidelines. In addition, the Company will conduct the necessary supervision for Employees and external consigned parties that handle pseudonymized information.
  4. (4) Provision of pseudonymized information to third parties
    Except in cases based on a law or ordinance, the Company will not provide pseudonymized information (excluding things that fall under personal information) to third parties.
  5. (5) Comparison with other information
    When handling pseudonymized information, the Company will not compare pseudonymized information with other information for the purpose of identifying the person related to the personal information that was used in creation of the pseudonymized information.
  6. (6) Elimination of pseudonymized information
    When it is no longer necessary to use personal data or deleted information that is pseudonymized information, the Company will strive to eliminate that personal data or deleted information without delay.

11. Handling of anonymized information

For personal information, the Company will implement the appropriate protection measures so that it will not be possible to identify a specific individual or to restore the personal information used in creation, and it will then conduct creation of anonymized information and provision to third parties within the scope that is allowed by laws and ordinances.

  1. (1) Method of creation of anonymized information
    The Company will process personal information and continuously create anonymized information in accordance with the processing standards stipulated by the Act on the Protection of Personal Information, other laws and ordinances, the Guidelines on the Act on the Protection of Personal Information, and other guidelines.
    Main examples of processing
    1. (i) Deletion of statements by which it is possible to identify specific individuals
    2. (ii) Deletion of individual identification codes
    3. (iii) Deletion of codes that are mutually linked to information
    4. (iv) Deletion of unique statements
    5. (v) Other measures based on the nature of personal information databases
  2. (2) Matters included in anonymized information
    1. (i) Information about company attributes (number of employees, annual sales, industry type, and fiscal year of implementing investigation)
    2. (ii) Information about employee attributes (classification of the organization to which the employee belongs, form of employment, position, work classification, and amount of work)
  3. Provision of anonymized information to third parties
    The purpose of cases in which anonymized information created by the Company will be provided to third parties, the matters included in anonymized information, and the method of provision of anonymized information are as stated below.
    1. (i) Purpose
      For the Company to conduct data analysis at companies that receive consignment
    2. (ii) Matters included in anonymized information that will be provided to third parties
      The matters of items (i) and (ii) of (2) above
    3. (iii) Method of provision
      A data file will be encrypted and provision will be conducted by means for which security has been ensured.
  4. (4) Safety management measures for anonymized information
    For anonymized information, the Company will prevent leaks, loss, or damage and implement other necessary and appropriate safety management measures for the purpose of management. In addition, the Company will conduct the necessary supervision for Employees and external consigned parties that handle anonymized information.

12. Transfer of personal information outside the area or outside the country

The Company will not transfer personal information outside Japan other than in cases in which it will obtain the customer’s consent and then make an individual introduction to an overseas affiliated company of the Company.
In addition, concerning personal information transfers from the European Economic Area (EEA) to Japan, Japan has received, from the European Commission, authorization for the adequate level of protection based on Article 45 of the GDPR, and in accordance with that, personal information is being handled within the Company at an appropriate level based on an authorized ISMS.

13. Restriction of acquisition of personal information

In principle, direct acquisition of personal information from minors will not be conducted at the Company. In addition, excluding cases stipulated in the GDPR, sensitive information (thoughts or beliefs etc.) will also not be acquired.

14. A personal information owner’s rights related to personal information

A personal information owner has the rights below against the Company, based on the Act on the Protection of Personal Information and the GDPR.

  1. (i) The right of access to personal information
    The right to confirm whether or not one’s own personal information is being used and, if it is being used, the right to access that personal information and information that is incidental to that personal information
  2. (ii) The right of correction of personal information
    The right to have one’s own inaccurate personal information corrected
  3. (iii) The right of elimination of personal information
    The right to have one’s own personal information eliminated in certain cases
  4. (iv) The right of restriction of use of personal information
    The right to have use of one’s own personal information restricted in certain cases
  5. (v) The right to make objections about use of personal inform
    The right to make objections about use of one’s own personal information on the grounds of legitimate profit sought by the Company or a third party
  6. (vi) The right of data portability
    For personal information that has been provided to the Company, the right to receive it in a form that has mechanical readability that has been structuralized and that is generally used and to transfer that personal information to another manager without hindrance to the Company

15. Requests for disclosure, correction, or cessation of personal information (exercising of rights)

  1. (1) In relation to possessed personal data, the Company will promptly respond to the relevant person’s requests for disclosure (notification of the purposes of use, disclosure, correction of content, addition or deletion, cessation of use, elimination, or cessation of provision to third parties). In a case in which you want disclosure, the Company will confirm that the person who makes the request is the relevant person or that person’s representative and then respond within a reasonable period and scope.
  2. (2) Irrespective of (1) above, this will not apply in a case in which, based on the Act on the Protection of Personal Information, the GDPR, or another law or ordinance, the Company does not bear an obligation of disclosure.

16. Office for inquiries related to personal information

Management Headquarters
Japan Management Association Building, 3-1-22 Shibakoen, Minato-ku, Tokyo
TEL: +81-3-4531-4300
Alternatively, please use the inquiry form.

17. Public availability and revision of the Policy

The Company will post the policy on its homepage and make it publicly available. The Company also may revise the Policy in order to respond to revision of a related law or ordinance or to social needs related to personal information. In such a case, the Company will make the Policy publicly available on the Company’s homepage.

Established on April 1, 2019
Revised on January 8, 2021
Revised on April 1, 2022

JMAC Cookie Policy

In order to strive to improve user experience, cookies and other technologies for tracking (hereinafter referred to as “Cookies”) are used on the website of JMA Consultants Inc. (hereinafter referred to as the “Company”). This policy states details about the Cookies that are managed on the Company’s website and about customers’ methods of conducting management and selection.

1. Explanation of Cookies

Cookies are text files that are combinations of the letters and numbers that are saved on your computer (including devices that can connect to the Internet, such as smartphones and tablets) when you access the Company’s website. By using Cookies, it is possible for the Company to collect information such as the number of website visits made by the computer you used and the pages that were visited. (Please note that information obtained through Cookies will not include any personal information by which it is possible to identify you.)

2. Agreement

When this website is used, it will be deemed that the customer agreed to this Cookie Policy and use of Cookies.

3. Method of managing Cookies

To prevent Cookies from being saved on your computer, it is possible to adjust the settings of the browser you use and control and manage settings for all or a portion of the Cookies.

For specific methods related to settings for Cookies, please check the browser’s help menu or read the following: http://www.allaboutcookies.org/.

4. Types of Cookies that are used

At the Company, the two types of Cookies below have been set.

  1. (1) Cookies necessary for operating the website
    These Cookies are necessary for using the functions of the website, such as moving between website pages and accessing pages that have been protected. If you refuse these Cookies, the action that you want may not function in the way that was requested.
  2. (2) Cookies for improving performance
    These Cookies are used in order to collect and analyze the ways in which visitors are using the website, such as the number of visitors and the page that is accessed most frequently. The information that is collected by these Cookies will be used for improving website performance, such as making it easy to find the information that customers need.

5. Place for making inquiries related to this policy

Administration Department
Japan Management Association Building, 3-1-22 Shibakoen, Minato-ku, Tokyo
TEL: +81-(0)3-4531-4300
Alternatively, please usethe inquiry form.

Established on April 1, 2019

Scroll to top