1. Introduction / Applicability
The Ten Principles of PIPEDA are summarized below:
- 1. Accountability: organizations are accountable for the personal information they collect, use, retain and disclose in the course of their commercial activities;
- 2. Identifying Purposes: organizations are to explain the purposes for which the information is being used at the time of collection and can only be used for those purposes;
- 3. Consent: organizations must obtain an individual’s express or implied consent when they collect, use, or disclose the individual’s personal information;
- 4. Limiting Collection: the collection of personal information must be limited to only the amount and type that is reasonably necessary for the identified purposes;
- 5. Limiting Use, Disclosure and Retention: unless the individual consents otherwise or it is required by law, personal information can only be used or disclosed for the purposes for which it was collected. Personal information must only be kept as long as required to serve those purposes;
- 6. Accuracy: organizations are required to keep personal information in active files accurate, complete and up-to-date;
- 7. Safeguards: organizations are to use physical, organizational, and technological safeguards to protect personal information from unauthorized access or disclosure;
- 8. Openness: organizations must inform their clients and train their employees about their privacy policies and procedures;
- 9. Individual Access: an individual has a right to access their personal information held by an organization and to challenge its accuracy if need be; and,
- 10. Challenging Compliance: an individual has the right to challenge an organization’s compliance with the above principles.
2. Personal Information We Collect
“Personal information” means information that can be used to identify an individual. Examples of personal information that we collect, use and/or disclose include your contact information (name, address, phone number or email address) and billing information (credit card number or banking information). For example, when signing up for the Newsletters from JNTO Canada, which is accessible from <http://ilovejapan.ca/home/newsletters/>, we ask that Members of the General Public provide their full name and email address in order to receive our e-Newsletters.
If you contact us directly, we may receive additional information about you such as your name, email address, phone number, the contents of the message and/or attachments you may send us, and any other information you may choose to provide.
3. How We Use Your Personal Information
In addition to providing you with our Services, as described above, we may collect, use and/or disclose your personal information for the following purposes, which includes but is not limited to:
Marketing and Public Relations (PR) Activities
We may collect, use and/or disclose your personal information for the following marketing and public relations activities, such as:
• organizing business events and contests;
• sending information and communicating with the press; and,
• sending the requested brochures/newsletters to data subjects, updating our social media webpages, and replying to enquiries.
We may collect, use and/or disclose your personal information for the following business operations purposes, such as:
• organizing our familiarization and/or media trips and make all the necessary arrangements regarding travel and accommodation;
• organizing e-learning programs;
• organizing business events and seminars;
• maintaining operational contact details;
• managing and evaluating our relationship with the business partners and communicating with them; and,
• collecting and answering responses to our questionaries.
4. How We Share Your Personal Information
To the extent possible, we aim to minimize disclosure of your personal information to third parties. However, we may be required to make certain disclosures from time to time. For example, we may share your personal information when required by law to do so, when you have consented to disclosure, with strategic partners, service providers, corporate affiliates, for corporate business transactions, and to our global offices.
5. Data Transfer Outside of Country
We may need to transfer your personal information to third parties which may be located in countries outside of your own in the situations described in section "4. How We Share Your Personal Information”. We will implement safeguards to protect your personal information, as required under applicable local data protection laws and regulations.
We will use reasonable physical, electronic, and procedural measures to safeguard your personal information within our organization against loss, theft, and unauthorized use, disclosure, or modification.
Any personal information held by or on our behalf is stored on secure servers, with modern security measures in place to protect against the loss, unauthorized access or alteration, or misuse of such information. Where such personal information is held by unrelated third parties on our behalf, we have also imposed contractual obligations on such parties to ensure the confidentiality and security of such information.
However, while we will take all reasonable measures to protect the integrity of such information, we cannot guarantee that loss, unauthorized access or alterations, or misuse will not occur.
It is in turn your duty to inform us promptly of any possible security breaches (including unauthorized access to your personal information through our websites).
7. Retaining Personal Information
We retain personal information for as long as necessary to fulfill the purposes for which it was collected and as permitted or required by law.
8. Consent and Right of Access
Right of Access: You have the right to access, update and correct inaccuracies in your personal information in our custody and control, subject to limited exceptions under applicable law. You can make this request by emailing or writing to us at the contact information provided in section 11. We may require personal information from you to verify your identity to process your request.
If you have any questions about the lawful bases upon which we collect and use your personal information, please email us at the address listed in in section 11 below.
9. Cookies and Similar Technologies
10. Opt Out
If you no longer want to receive communications from us, you may opt out by following the instructions contained within each email sent by us for this purpose or by contacting us using the contact details in section 11 below.
11. Contact Us
By email: email@example.com
12. Policy Changes