Privacy Policy

Personal Information Protection Policy

GMO Pepabo, Inc. ("the Company"), in full recognition of the importance of protecting its customers’ personal information, has established a Privacy Policy as set forth below and will make company-wide efforts to ensure that its customers' personal information is appropriately protected, in order that the Company may establish lasting relationships of trust with customers going forward.

GMO Pepabo, Inc.
Kentaro Sato, Representative Director and CEO

1.Compliance

The Company shall comply with the Act on the Protection of Personal Information, Telecommunications Business Act, other laws and regulations, guidelines related to the protection of personal information, and this Privacy Policy with respect to the handling of personal information.

2.Definition of personal information

The term "personal information" shall mean information about a living individual which can identify a specific individual by name, date of birth, address, telephone number or other description contained in such information. This shall include such information that makes it possible to reference other information and thereby enable the identification of a specific individual.

3.Purpose of use of personal information

The Company, in using personal information, shall specify the purpose of use to the extent possible prior to announcing or collecting information in this Privacy Policy, or on the websites of each of the services. The Company shall abide by the announced purpose of use when handling personal information.
The purpose of use of personal information collected by the Company shall be as follows.

  1. Purpose of use of personal information of users of the Company's services
    1. To send invoices for usage charges for services based on the terms of use and usage charges schedules
    2. To use as an address to send confirmation emails when a user subscribes, withdraws or makes changes to registration information
    3. To use as a reference when confirming details, conducting research or replying to inquiries regarding the Company or services provided by the Company
    4. To send users notices on information concerning fault of each service provided by the Company, technical support, including maintenance, information for such services, or information that may be useful to customers, including new services and products, and function improvements
    5. To send goods, giveaways, and gifts, etc.
    6. To compile statistical data, based on the personal information obtained for registration, to the extent it does not enable identification of an individual, in order to prepare reference materials for development of useful services for customers
    7. To use as a reference when customers use related functions at their discretion at various services (publication of "who is" information on Muu Muu Domain, etc.)
    8. To provide services provided by the Company and services related thereto, and for the management of users of the Company's services
    9. To provide personal information to third parties in cases where the Company has received consent from the customer him/herself in providing the services
    10. For other purposes of use for which the Company has received the customer's consent, upon having declared the purpose of use in providing the services

    ※When users use the services provided, the Company advises taking particular care with using functions, which are used at the customer's discretion, that are linked to personal information.

  2. Purpose of use of personal information obtained from applicants seeking employment with the Company
    1. To select applicants based on personal information provided in their curriculum vitae, employment history, etc.
    2. To contact applicants regarding interview times, and notify them regarding the results of their application for employment
    3. To determine wages and carry out employment management following recruitment
    4. To use for purposes other than those stated in the preceding three items for which consent has been obtained from the individual

4.Usage within the scope of purpose of use

The Company shall only use customers' personal information within the scope necessary to achieve the purpose of use as specified and declared in advance. However, the Company may use customers' personal information beyond the scope necessary to achieve the purpose of use as specified and declared in advance in cases which fall under any of the following items which are stipulated in Article 6, Paragraph 3 of the Guidelines Regarding the Protection of Personal Information in the Telecommunications Business.

  1. When based on laws and regulations
  2. When necessary for the protection of the life, body, or property of an individual, and when it is difficult to obtain the consent of the person
  3. When particularly necessary for improving public health or promoting the sound nurturing of children, and when it is difficult to obtain the consent of the person
  4. When necessary for cooperating with a state organ, a local government, or an individual or a business entrusted by either of the former two in executing the affairs prescribed by laws and regulations, and when obtaining the consent of the person is likely to impede the execution of those affairs

5.Storage Period

The Company shall set a period for storage of customers' personal information within the scope necessary for the purpose of use, and shall promptly delete such information after the storage period had elapsed or after the purpose of use has been achieved.
However, this shall not apply in cases which fall under any of the following points which are stipulated in Article 10, Paragraph 2 of the Guidelines Regarding the Protection of Personal Information in Telecommunications Business.

  1. When the information must be stored in accordance with provisions of laws and regulations
  2. When consent has been obtained from the individual
  3. When personal information is stored to the extent required for a telecommunications business to conduct its business, and when there are reasonable grounds for not deleting the personal information
  4. When there are particular reasons, other than the cases stipulated in the preceding three items, for not deleting said personal information

6.Measures to control security of personal information

The Company shall establish organizational, physical, human, and technological measures to prevent improper access to, or loss, destruction, alteration and leakage, etc. of, personal information obtained from a customer.

7.Supervision of employees

The Company shall make clear its internal regulations concerning the handling of personal information, and supervise employees to ensure they handle personal information appropriately.

8.Provision of personal information to a third party

The Company shall, in principle, not provide any personal information obtained from a customer without obtaining the individual's consent. However, the Company may, to the extent that it does not conflict with related laws and regulations, provide a customer's personal information without the individual's consent in the following cases.

  1. When based on laws and regulations
  2. When necessary for the protection of the life, body, or property of an individual, and when it is difficult to obtain the consent of the customer him/herself.
  3. When particularly necessary for improving public health or promoting the sound nurturing of children, and when it is difficult to obtain the consent of the customer him/herself
  4. When necessary for cooperating with a state organ, a local government, or an individual or a business entrusted by either of the former two in executing the affairs prescribed by laws and regulations, and when obtaining the consent of the customer him/herself is likely to impede the execution of those affairs
  5. When disclosing/providing the information to a business which has been entrusted to carry out operations to provide services requested by the customer him/herself

In providing the services, the Company may provide personal information to the following third parties after having obtained the prior consent of the customer him/herself.

Recipient of Personal Information GMO Internet, Inc.
Personal information provided Name, address, gender, date of birth, telephone number, fax number, email address, mobile telephone number, mobile email address, name of service used, usage charges, payment information, purchase history, point history, details of inquiries
Purpose of use To provide services/system maintenance
Means of provision Online

9.Ongoing improvement

The Company will carry out continuous improvements to ensure that personal information is handled appropriately.

10.Disclosure, amendment and deletion of personal information

  1. Methods for disclosure and amendment of personal information for each service

    At the services provided by the Company, users may in some cases be able to view or amend all or part of the personal information the Company has received from them under an environment protected in a reasonable and technologically appropriate method.
    Please log in on the user page on the service websites. Personal information held by each of the services can be viewed and amended on the user page.

    To the list of services' websites

  2. Method for disclosure of personal information held by the Company

    With respect to customers' personal information that cannot be viewed or amended, etc. according to the method described in the preceding paragraph, if the customer wishes to be notified of the purpose of use of the information, have the information disclosed, amended, added, deleted or suspended, or stop provision of the information to a third party, the Company will promptly respond to such requests within reasonable bounds if the individual submits a request by following the following procedures established by the Company. However, the Company may not be able to respond to customers' requests in cases which fall under any of the following items which are stipulated in each of the points in Paragraph 1 of Article 17 of the Guidelines Regarding the Protection of Personal Information in the Telecommunications Business.

    1. When it is likely to harm the life, body, property, or other rights or interests of the person or a third party
    2. When it is likely to have a significant adverse effect on the proper implementation of the operations of the applicable telecommunications business.
    3. When doing so would breach other laws and regulations

    Procedures for disclosure of personal information

11. Inquiries regarding personal information

The Company shall respond promptly and appropriately to complaints and other inquiries received from customers concerning the handling of personal information. Inquiries regarding personal information shall be directed as follows.

Please contact the following contact point for inquiries regarding details of services.

List of contact points for service inquiries

12.Changes to the Privacy Policy

When the Company makes any changes regarding the kind of personal information collected, the purpose of use, or other changes to the Privacy Policy, such changes shall be announced by updating the changes on this page.
The revised Privacy Policy shall take effect as of the time of the revised date indicated on this website.

Supplementary Provisions: This Privacy Policy shall take full force and effect as of
March 31, 2005.
Revised on October 3, 2006
Revised on November 1, 2007
Revised on April 1, 2009
Revised on January 12, 2010
Revised on October 19, 2010
Revised on October 9, 2013
Revised on April 1, 2014 (change in corporate name)
Revised on April 20, 2021

Site Policy

◆Using Cookies
To provide customers with better service the Company may use Cookies. Usage of Cookies, however, does not enable the company to collect information that can identify an individual.
If users wish to disable Cookies, this can be done by changing the browser settings.
* A "Cookie" is information that is sent from a server computer to a customer's browser, and stored on the hard disk of the computer used by the customer.

◆Access log
Information on users who have accessed the Company's corporate website and services' websites will be recorded in the form of an access log. Access logs contain information on users who have accessed those sites, including the user's IP address, host name, type of browser/OS used, and the time of access. The Company may use those access logs to maintain websites and services and to perform statistical analysis on the usage status.

◆Individual identification numbers for mobile telephones
When users use functions such as "easy login" when using their mobile phones to access the Company's services, the mobile phone's individual identification number shall be obtained. The individual identification number referred to herein shall mean the specific information pertaining to a mobile telephone set, including model information and the serial number. Although the Company obtains individual identification numbers, it is not able to identify such personal information as the mobile telephone subscriber's name, address and telephone number.

List of service websites

Please log in on the user page on the service websites. Personal information held by each of the services can be viewed and amended on the user page.

Procedures for disclosure of personal information

  1. Please download and print out the Company's prescribed form (Request Form for Disclosure of Personal Information /Request Form for Amendment, etc. of Personal Information)
  2. Please fill in the required details in the Request Form for Disclosure of Personal Information /Request Form for Amendment, etc. of Personal Information indicated in 1. above.
  3. Please prepare the following documents when the procedures are carried out by the individual him/herself.
    1. Duplicate of original copy of residence certificate, or duplicate of original copy of matters recorded in the alien registration (issued within one month prior to the request date)
    2. Driver's license photocopy
    3. Passport photocopy
    4. Health insurance certificate photocopy
    5. Pension insurance handbook photocopy
    6. Alien registration card photocopy
    Please prepare either of the documents stated in (I) above and any one of the documents (those that have not yet expired) listed in (II) to (VI) below. We do not accept copies of Individual Number Cards (My Number Card) and documents with Individual Numbers. Please submit official identification without any Individual Number.
  4. In cases where the procedures are carried out by a representative, please prepare the following documents.
    1. Duplicate of original copy of the individual's residence certificate (issued within one month prior to the request date)
    2. Power of attorney
    3. The individual's original seal certificate used for preparing the power of attorney
    4. Representative's driver's license photocopy
    5. Representative's passport photocopy
    6. Representative's health insurance certificate photocopy
    7. Representative's pension insurance handbook photocopy
    8. Representative's alien registration card photocopy
    * In cases where the applicant is a legal representative, in addition to the documents stipulated in (II) to (III) above, documents that verify the qualification thereof (copy of family register, extract of family register, family court certificate, or certificate of matters entered in the registry, which have been issued within one month prior to the request date)
    Please prepare the documents stated in (I) to (III) above and any one of the documents (those that have not yet expired) listed in (IV) to (VIII) below.
  5. Persons who request disclosure of personal information shall be charged a handling fee of 5,500 yen (including tax), to be deposited into the Company's designated account. A handling fee will not be charged to persons who only request amendments, etc. to personal information.
    For account details please inquire at the below contact point that handles matters concerning personal information.
  6. Please send the documents stipulated in 2. and 3. Above (in the case where the request is made by a representative, the documents stipulated in 2. and 4.) to the address below by simplified registered mail or registered mail with delivery certificate.
    Mailing address
    GMO Pepabo, Inc.
    Cerulean Tower
    26-1 Sakuragaokacho, Shibuya ku, Tokyo, JAPAN 150-8512
    Download request forms
  7. The Company will respond to requests in due course by registered mail with delivery certificate after completing procedures to verify the individual's identity and confirm the fee deposit.
    Please contact the customer service contact point for matters related to personal information if you have any questions about the response from the Company. The Company will then contact you in due course.

List of contact points for service inquiries

  • * If you are a shop owner, please direct inquiries to "Color Me Shop".