Privacy Policy

In accordance with the "Act on the Protection of Personal Information" (hereinafter referred to as the "Act"), NEXTARTFX (hereinafter referred to as the "Company") has established and announced its privacy policy regarding the appropriate protection and use of personal information.

About the Privacy Policy
With respect to the appropriate protection and use of personal information, we will comply with the relevant laws and regulations as well as the items set forth in this policy, and strive to protect and use our customers' personal information appropriately, while also striving to continuously improve our management system and efforts to protect personal information in order to appropriately respond to the development of information technology. We will also strive to continuously improve our management system and efforts to protect personal information.

Purpose of Use of Personal Information
(1) The Company shall specify the purpose of use of customers' personal information and shall use such information within the scope necessary to achieve the purpose of use, except as otherwise provided by law. The Company's purpose of use of personal information is posted on the Company's website and at the head office.
(2) If the purpose of use of personal information is limited by laws and regulations such as the Enforcement Regulations of the Banking Law, the Company will not use such information for purposes other than those specified by such laws and regulations.
(3) If a customer requests that the Company discontinue the use of his/her personal information for direct marketing purposes such as sending e-mail or telemarketing, the Company will immediately discontinue the use of the personal information for such purposes.
Proper Acquisition of Personal Information
We will acquire your personal information in an appropriate and lawful manner to the extent necessary to achieve the purposes of use specified in "Purposes of Use of Personal Information" above.

Provision of Personal Information to Third Parties
We will not provide your personal information to any third party without obtaining your prior consent, except as required by law.
However, if we provide personal information to a third party outside of Japan and it is necessary for us to take measures to ensure that the third party continues to take the appropriate measures, we will provide information regarding our measures, including the name of the foreign country, if requested by the customer.

Outsourcing of Personal Information
When personal information is entrusted to a third party for use, we will consider the appropriateness of the entrustment in light of the security control measures taken by the third party, and will provide the information to the third party after concluding a business consignment agreement with the third party that stipulates the matters necessary for appropriate supervision, including the maintenance of confidentiality, and through these measures Appropriate supervision of contractors will be implemented.

Security Control Measures
The Company shall implement appropriate security control measures to prevent the loss, falsification, leakage, etc. of customers' personal information as follows.

(1) Basic Policy
To ensure the proper handling of personal information, we have established a basic policy regarding "compliance with relevant laws, regulations, guidelines, etc." and "contact point for questions and complaints.
(2) Establishment of Rules for Handling Personal Information
The Company has established and maintained rules and procedures for basic handling methods, responsible persons, persons in charge, and their duties when acquiring, using, storing, providing, deleting, and disposing of personal information.
(3) Organizational Safety Control Measures
In addition to appointing a person responsible for the handling of personal information, the Company has established a system to clarify the scope of personal data handled by all officers and employees who handle personal data, the method of handling, etc., and to report to the person responsible and take appropriate measures in the event that a violation of the law or regulations is detected or signs of leakage, etc. are detected. In addition, the Company has established a system to report to the person in charge and to take appropriate measures in the event that a violation of laws or regulations or signs of leakage are detected.
In addition, the Company periodically conducts self-inspections to ensure that personal information is being handled in accordance with the rules for the handling of personal data, and audits are conducted by other departments.
(4) Personnel Safety Control Measures
The Company has written matters concerning the confidentiality of personal information in its employment regulations, and has obtained written pledges of confidentiality from executives and employees.
In addition, periodic training is provided to executives and employees on matters to keep in mind regarding the handling of personal information.
(5) Physical Security Control Measures
The Company implements access control in areas where personal information is handled and takes measures to prevent unauthorized persons from accessing personal information.
In addition, the Company takes measures to prevent theft or loss of equipment, electronic media, and documents that handle personal information, and implements measures to prevent personal information from being easily discovered, such as encryption when such equipment, electronic media, etc. are carried, including transportation within the Company's offices, and to prevent the deletion or loss of personal information. When equipment, electronic media, documents, etc. handling personal information are disposed of, they are done so by means that cannot be restored.
(6) Technical safety control measures
Access control is implemented and measures are taken to limit the scope of persons in charge and the personal information database, etc. handled.
In addition, a system is in place to protect information systems that handle personal information from unauthorized external access and unauthorized software, and to prevent information leaks, etc.
(7) Understanding the external environment
Procedures for Requests for Disclosure, etc.
The Company will respond appropriately and promptly with respect to the procedures for disclosure requests, etc., as stipulated by law.

Regarding Inquiries
We will respond appropriately and promptly to any comments or requests regarding our handling of personal information. Please contact our Support Center for any comments, requests, or inquiries regarding our handling of personal information and security control measures.

Complaints regarding the handling of personal information should also be directed to the Support Center.