The following is the policy regarding the handling of personal information at Findy, Inc. (hereinafter referred to as "Findy Group").
Personal information refers to information relating to a living individual that falls under any of the following categories:
Findy Group uses personal information within the scope of the purposes set forth below.
Personal information of Users
Personal information of those who use the services provided by Findy Group (hereinafter referred to as the "Services") (hereinafter referred to as "Users")
Personal information of business partners
Personal information of shareholders
Personal information of those who wish to join Findy Group
"Joining" refers to engaging in the business of Findy Group by entering into an employment contract with Findy Group, regardless of the title or contract period, including contract employees, part-time employees, temporary employees, etc.
Personal information of those who wish to receive outsourced work from Findy Group
Personal information of employees of Findy Group
Personal information of those who have left Findy Group
Personal information of those who make inquiries (including requests for materials) to Findy Group, participate in seminars, events, etc., or respond to surveys
Findy Group may jointly use the personal information entrusted to us as described below.
Findy Group will not handle personal information beyond the scope necessary for achieving the purpose of use without obtaining prior consent from the individual. However, this shall not apply in the following cases:
Correction of Personal Information
When Findy Group receives a request from an individual for the correction, addition, or deletion (hereinafter referred to as "Correction, etc.") of personal information based on the provisions of the Act on the Protection of Personal Information (hereinafter referred to as the "APPI") on the grounds that the personal information is not factually accurate, Findy Group will, after verifying that the request is from the individual themselves, promptly conduct a necessary investigation within the scope necessary for achieving the purpose of use, and based on the results, correct the content of the personal information and notify the individual accordingly (if a decision is made not to make the correction, the individual will be notified to that effect). However, this shall not apply in cases where Findy Group is not obligated to make such corrections under the APPI or other laws and regulations.
Suspension of Use of Personal Information
When Findy Group receives a request from an individual for (1) the suspension of use or deletion (hereinafter referred to as "Suspension of Use, etc.") of their personal information under the APPI on the grounds that it is being handled beyond the scope of the publicly announced purpose of use, or is being used in a manner that may promote or induce illegal or unjust acts, or was obtained by deception or other wrongful means; (2) the suspension of provision (hereinafter referred to as "Suspension of Provision") under the APPI on the grounds that personal information is being provided to a third party without the individual's consent; or (3) on the grounds that Findy Group no longer needs to use the individual's personal information, that a situation prescribed in the main text of Article 26, Paragraph 1 of the APPI has occurred regarding the individual's personal information, or that there is a risk of harm to the rights or legitimate interests of the individual due to the handling of their personal information, and when such request is found to be justified, Findy Group will, after verifying that the request is from the individual themselves, promptly suspend the use or provision of the personal information and notify the individual accordingly. However, this shall not apply in cases where Findy Group is not obligated to suspend use or provision under the APPI or other laws and regulations.
If Users wish to request disclosure of personal information that cannot be confirmed on the website related to the Services (hereinafter referred to as "this Website") or records under Article 29, Paragraph 1 or Article 30, Paragraph 3 of the APPI, please contact the following:
Contact: Findy, Inc. Personal Information Handling Office
E-MAIL: personal.info@findy.co.jp
Identity Verification
Necessary information will be requested to verify that the person making the disclosure request is the individual themselves.
Disclosure Method
Findy Group will make the disclosure as set forth in this section by the method requested by the person making the disclosure request (if the disclosure by such method requires substantial costs or is otherwise difficult, by delivery of a written document). Please note that when disclosure is made in writing, it may take several days for postal delivery. In addition, the person making the disclosure request may be asked to bear the cost of postage. Furthermore, disclosure under Article 33, Paragraph 1 of the APPI may not be made in the following cases. If a decision is made not to disclose, the reason will be notified.
Findy Group may entrust the handling of personal information to subcontractors in the course of business operations. In such cases, Findy Group will confirm that the subcontractor has a management system capable of appropriately protecting personal information and meets the standards necessary for preventing leakage of personal information before entrusting the work.
Findy Group may record and store the contents of phone calls, web conferences, etc. for the purpose of confirming the content of communications and improving service quality.
| Name of External Transmission Tool | Name of External Transmission Tool Provider | Privacy Policy of External Transmission Tool Provider | User Information Transmitted by External Transmission Tool |
|---|---|---|---|
| Google Analytics | Google LLC | https://policies.google.com/technologies/partner-sites?hl=ja | Number of page views, time spent on pages, usage environment, referral sources, and search terms |
| Google Tag Manager | Google LLC | https://policies.google.com/technologies/partner-sites?hl=ja | Visitor actions and pages viewed |
| Google Optimize | Google LLC | https://policies.google.com/technologies/partner-sites?hl=ja | Data related to visitor devices and browsers, and user actions |
| Google Ads | Google LLC | https://policies.google.com/technologies/partner-sites?hl=ja | Visitor actions and pages viewed |
| Microsoft Advertising | Microsoft Corporation | https://privacy.microsoft.com/ja-jp/privacystatement | Visitor search terms |
| Microsoft Clarity | Microsoft Corporation | https://privacy.microsoft.com/ja-jp/privacystatement | Visitor actions and pages viewed |
| Bing ads | Microsoft Corporation | https://x.com/ja/privacy | Visitor location information, content displayed, and other information |
| X Analytics | X Corp. | https://www.criteo.com/jp/privacy/ | Hashed browsing information such as mobile device IDs and email addresses |
| Criteo Ads | Criteo | https://www.criteo.com/jp/privacy/ | Visitor actions and pages viewed |
| Facebook Ads | Meta | https://www.facebook.com/privacy/policy | Visitor actions and pages viewed |
| X Ads | X Corp. | https://business.x.com/ja/help/ads-policies.html | Visitor actions and pages viewed |
| X Developer Platform | X Corp. | https://business.x.com/ja/help/ads-policies.html | Visitor actions and pages viewed |
| X link service | X Corp. | https://business.x.com/ja/help/ads-policies.html | Visitor actions and pages viewed |
| LINEYahoo for Business | LY Corporation | https://www.lycorp.co.jp/ja/company/privacypolicy/ | Visitor region of residence, gender, date of birth, and service usage history |
| Access Trade | Interspace Co., Ltd. | https://www.accesstrade.ne.jp/privacy | Personal identification information |
| STUDIO (PV measurement) | STUDIO Inc. | https://studio.inc/privacy | Visitor actions and pages viewed |
| STUDIO | STUDIO Inc. | https://studio.inc/privacy | Visitor actions and pages viewed |
| SmartNews Ads | SmartNews, Inc. | https://www.smartnews.com/privacy/#jp | Visitor actions and pages viewed |
| HubSpot | HubSpot Japan K.K. | https://legal.hubspot.com/jp/privacy-policy | Visitor actions and pages viewed |
| Marketing Cloud Account Engagement | Salesforce, Inc. | https://www.salesforce.com/jp/company/privacy/full_privacy/ | Visitor actions and pages viewed |
| KARTE | PLAID, Inc. | https://karte.io/karte-policy.html | Visitor actions and pages viewed |
Findy Group may link with user lists held by advertising-related businesses to identify users of the services provided by such businesses and provide information management services, deliver advertisements, and perform marketing analysis on those services.
Findy Group may provide personal information to the following partner companies (including those located in foreign countries) with the consent of Users, in order to deliver more relevant advertisements to Users and to perform advertising delivery, effectiveness measurement, analysis, etc.
Recipients
Personal information provided
Email addresses and phone numbers (however, these are hashed and processed into a format from which the original email addresses cannot be restored)
Findy Group provides necessary and appropriate supervision to its employees to ensure the safe management of personal information against risks such as loss, destruction, alteration, and leakage of personal information. Findy Group may also entrust the handling of personal information to subcontractors in the course of business operations. When selecting subcontractors, Findy Group requires that they have a management system capable of appropriately protecting personal information, and includes provisions in contracts regarding appropriate management of personal information, confidentiality, and other matters necessary for preventing leakage of personal information. The specific safety management measures regarding personal data held by Findy Group are as follows:
| Establishment of Basic Policy | This Privacy Policy has been established as a basic policy covering "compliance with relevant laws, guidelines, etc." and "contact points for questions and complaints," etc., to ensure the proper handling of personal data. |
|---|---|
| Development of Rules for Handling Personal Data |
Rules for handling personal data have been established for each stage of acquisition, use, storage, provision, deletion and disposal, covering handling methods, responsible persons and personnel, and their duties. |
| Organizational Safety Management Measures | 1) A responsible person for handling personal data has been appointed, and the employees who handle personal data and the scope of personal data they handle have been clarified. A reporting system to the responsible person has been established for cases where violations or signs of violations of laws or handling rules are detected. 2) Regular self-inspections of the handling status of personal data are conducted, along with audits by other departments and external parties. |
| Human Safety Management Measures | 1) Regular training is provided to employees on matters to be noted regarding the handling of personal data. 2) Matters concerning confidentiality of personal data are included in employment regulations or rules. |
| Physical Safety Management Measures | 1) In areas where personal data is handled, management of employee entry and exit and restrictions on equipment brought in are implemented, along with measures to prevent viewing of personal data by unauthorized persons. 2) Measures are taken to prevent theft or loss of equipment, electronic media, and documents that handle personal data, and when transporting such equipment and electronic media (including movement within offices), measures are implemented to ensure that personal data cannot be easily identified. |
| Technical Safety Management Measures | 1) Access controls are implemented to limit the scope of personnel and personal information databases they handle. 2) Systems that handle personal data are protected from unauthorized external access or malicious software through the introduction of protective mechanisms. |
| Understanding of External Environment | When storing personal data in cloud services, etc. located in foreign countries, appropriate safety management measures are implemented after understanding the systems for protecting personal data in those countries. |
Except where otherwise required by laws and regulations, Findy Group may change this Policy at any time by publishing changes on the Findy Group website without prior consent of Users and other users of the services.
Established / Effective: September 11, 2016
Supplementary Provisions
Revised: March 1, 2017
Revised: January 20, 2020
Revised: June 11, 2021
Revised: April 1, 2022
Revised: December 21, 2022
Revised: October 25, 2023
Revised: July 8, 2024
Revised: August 28, 2024
Revised: December 11, 2024
Revised: March 19, 2025
Revised: September 30, 2025
Revised: April 20, 2026