Plans of Use of Personal Information (excluding "Personal number")
1. The Company shall acquire and use the personal information of the customers by appropriate and lawful means to the extent required to conduct the following operations.
- Deposit business, transfer business, money exchange business, loan business, foreign exchange business, and business incidental thereto
- Investment trust business, insurance sales business, financial instruments intermediary business, trust business, corporate bond business, and other businesses that a bank may engage in pursuant to law and other businesses incidental thereto
- Other business that banks are able to carry on and business incidental thereto (including the business that will be permitted to be handled in the future)
More specifically, this service is used for the following purposes.
Pursuant to Article 13-6-6 the Regulations Enforcement of the Banking Act and other regulations, the information on the borrowers’ ability to repay debt provided by the Personal Credit Information Bureaus will not be used or provided to a third party for purposes other than the investigation of borrowers’ ability to repay debt.
In addition, pursuant to Article 13-6-7 of the Regulations Enforcement of the Banking Act, the Company will not use or provide to any third party any special non-public information such as information on race, creed, family origin, registered domicile, health and medical, or criminal records for purposes other than those for securing appropriate management of the business and other necessary purposes.
In addition, the purpose of use will be clearly defined for the customer. For example, when responding to various questionnaires, etc., the purpose of use will be limited according to the occasion when the questionnaire was obtained, such as for the purpose of aggregating questionnaires.
- To accept applications for financial products and services, such as opening accounts for various types of financial products
- To verify the customers' identification based on the Act on Prevention of Transfer of Criminal Proceeds and to confirm the qualifications for using financial products and services
- For the management of continuous transactions, such as the management of dates in the transaction of deposit transactions and loan transactions
- To make decisions when applying for a loan or when using a loan on a continual basis, etc...
- For judging the appropriateness of the provision of financial products and services, such as judging in light of the principles of conformity
- In the case of credit business, to provide personal information of the customers to third parties to the extent necessary for conducting appropriate operations, such as providing the customer's personal information to the affiliated credit information Bureaus
- For the purpose of properly carrying out the outsourced business in cases where the processing of personal information is entrusted in whole or in part by other business operators, etc.
- For the exercise of rights and the fulfillment of obligations under contracts with the customers and laws
- For research and development of financial products and services through market research, data analysis, and surveys
- For various proposals related to financial products and services such as sending out direct mail
- For analyzing information on browsing history and transactions to distribute advertisements and direct mailings regarding financial products and services that match your interests and preferences
- For analyzing acquired behavioral history and other information, calculating credit scores, and providing such scores to third parties
- For various proposals of products and services such as partner companies
- For the cancellation of various transactions and for ex post facto management after the cancellation of transactions
- For proper and smooth fulfillment of inquiries about transactions, inquiries and other transactions with the customers
Shared use of personal information (Except for "Personal number")
2. As an exception to the sharing of personal information with third parties, when using personal data shared with a specific person, disclose in advance to the customer the fact that personal data will be used jointly, the items of the personal data to be used jointly, the scope of the persons to be used jointly, the purposes of use of the users, and the name of the person responsible for the control of the personal data in advance on the website, etc. and then the Company shall use the personal data jointly.
- Matters related to joint use with Sony Financial Group (related to Article 27, paragraph 5, item 3 of the Protection Law)
Sony Financial Group (hereinafter referred to as "the person set forth in <2>) shall share personal data as follows:
In the event of restrictions under the Financial Instruments and Exchange Law or other relevant laws other than the Personal Information Protection Law, such joint use shall be handled in accordance with such laws and regulations.- Items of personal data to be used jointly
- Attribute information (e.g., address, name, date of birth, gender, place of work, position, contact information such as telephone number and e-mail address, information that can be used to identify or specify individuals such as personal identification code, and family member information)
- Financial data (e.g., revenues and expenditures, status of assets and liabilities, etc.)
- Transactional information (e.g., product and service types, transaction amounts, information on applications for contract dates, information on claims for insurance incidents, purpose of transaction, security number, management numbers such as branch numbers or account numbers, transaction histories, records and background, and information on decisions on whether or not transactions are acceptable)
- Information obtained through Sony Financial Group's applications, websites, or other documents (hereinafter referred to as the person specified in <2>) (e.g., application usage status, browsing history, location information, questionnaire response data, etc.)
- Scope of joint users
Sony Financial Group Inc. and its consolidated subsidiaries and affiliates accounted for by the equity method, which have already made public notices pursuant to Article 27, Paragraph 5, Item 3 of the Protection Law (hereinafter referred to as the "Sony Financial Group") - Purpose of joint use
- For the planning and development of various financial products and services provided by Sony Financial Group
- To provide suggestions and information on Sony Financial Group's corporate information, financial products, services, and other related information, as well as to respond to comments and inquiries
- In order to carry out other operations incidental to a. b. above and the operations of Sony Financial Group smoothly
- The name of the person responsible for the management of personal data
Sony Financial Group companies that originally acquired the relevant personal data
- Items of personal data to be used jointly
Discontinue Direct Marketing
3. If the customer does not wish to receive information via direct mail, telephone, or e-mail, please proceed through the website.
Purpose of Use of the Personal number
4. Purpose of use of the customer's Personal number obtained by the Company is as follows.
The Company will not use Personal numbers for any purposes other than those permitted by law.
- Preparation of statutory documents concerning financial instruments transactions
- Affairs related to the numbering of deposit accounts
- Affairs related to registration, change, cancellation, etc. of public money receiving accounts
- Affairs related to the disclosure of information on savings accounts in the event of disasters and inheritances
- Affairs related to ensuring the accuracy of personal identification matters and personal identification numbers
- Other affairs related to each of the above purposes of use
Ensuring the Accuracy of Personal Data
5. The Company strives to keep personal data of the customers accurate and up-to-date.
If the customer needs to modify or update the personal data provided, please make a request to the Company's English help desk or at the website to modify or update.
Outsourcing of Handling of Personal Data (excluding "Personal number")
6. The Company outsources the handling of personal data in the following cases, for example.
- Business matters related to the dispatch of Application to open account documents, cash cards, transaction balance reports, etc.
- Foreign Exchange and Other Business Related to Foreign Transactions
- Business matters related to the dispatch of direct mail
- Work-related to the operation and maintenance of information systems
Outsourcing of Specific Personal Information Handling
7. The Company outsources the handling of Specific Personal Information to the extent required to carry out the following duties.
- Business matters to Prepare Statutory Documents Pertaining to Financial Instruments Transactions
- Business matters related to the numbering of deposit accounts
- Work-related to the operation and maintenance of information systems
Transfer to a foreign country
8. When we provide customers' personal information to third parties such as foreign entities, including subcontractors and joint users, we will only disclose such information with the consent of the customer, except in any of the following cases:
- When the third party is located in a foreign country or region that is stipulated by law as having a personal information protection system at a level equivalent to that of Japan.
- When the third party is located in a foreign country or region and has implemented security measures comparable to those required of business operators handling personal information.
When providing personal data to an entrusted entity (including sub-contractors, etc.) located outside of Japan, we ensure that necessary and appropriate measures are taken for the secure management of information.
In addition, upon request from the person in question, we will provide information on measures for safety management, etc., at contractors (including sub-contractors, etc.) located in the relevant foreign country and region.
If, at the time of obtaining consent, the third party to which personal information is to be provided cannot be identified or for some other reason cannot be provided, but the third party can be identified after the fact, information regarding the provision of personal information to the third party in a foreign country can be provided upon request from the person in question. For details, please contact English Help Desk in Section 13.
Methods of acquiring personal information (excluding "Personal number")
9. The Company acquires personal information from the following sources, for example.
- Cases where personal information is provided directly by the customers by entering personal information on the "Account opening application" screen of our web site
- Cases where personal information is provided by a co-user of a local clearinghouse or a third party such as a personal credit information agency
- In the event that the customer accepts inquiries or requests for consultation by telephone (the contents of telephone calls with the customer may be recorded for the purpose of improving the response quality and confirming the contents thereof)
Methods to Obtain Personal number
10. The Company, in principle, has obtained a Personal number from the following sources.
- The customers are provided directly by entering Personal number on the notification page on our web site.
Request for Disclosure, etc. Procedures
11. Requests regarding notice of the Purpose of Utilization of the Company Retained Personal Data (in relation to Article 32, Paragraph 2 of the Protection law), disclosures (in relation to Article 33, Paragraph 1 of the Protection law), corrections, etc. (in relation to Article 34, Paragraph 1 of the Protection law), and suspension of use, etc. and suspension of provision to third parties (in relation to Article 35, Paragraphs 1,3 and 5 of the Protection law) (hereinafter referred to as "Request for Disclosure, etc."), please refer to this page (Japanese language only).
General safety control measures
12. We are taking strict security measures as follows to protect personal information that we obtain/keep.
- Setting a basic policy
In an aim to realize proper management of personal information, we are setting basic policies such as “Compliance to relevant regulations and guidelines”, or “Contact window for queries and complaints”. - Disciplinary measures as to handling of personal information
We are setting disciplinary measures as to handling of personal information for every step as obtaining, making use of, keeping, letting others have, deleting, discarding. The measure includes relevant articles as to handling personal information, job assignment of person in charge and his/her supervisor. - Organizational Safety Control Measures
In addition to appointing a person responsible for the handling of personal information, we have established a system to clarify the officers and employees who handle personal information and the scope of personal information handled by such officers and employees, and to report to the person responsible in the event that a violation of laws and regulations or handling rules is detected or any indication of such a violation is detected. - Personal Safety Control Measures
We provide regular training to our officers and employees on matters to keep in mind regarding the handling of personal information. - Physical Security Control Measures
In the areas where personal information is handled, we control the access of officers and employees, limit the equipment they may bring in, and take measures to prevent unauthorized persons from viewing personal information. - Technical Security Control Measures
We implement access control to limit the scope of persons in charge and the personal information databases handled. - Understanding the external environment
When we handle personal information in a foreign country, we implement safety control measures based on our understanding of the systems for the protection of personal information in that foreign country.
Contact point for complaints and inquiries regarding the handling of retained personal data
13. For complaints and inquiries regarding the handling of the Company retained personal data and security control measures, please contact the following.
Sony Bank: The Contact Point for Customer Complaints and Inquiries
- English help desk <Online live chat>
- https://faq.moneykit.net/en/help/
Please contact us via "Start a chat" on the homepage. - Business hours
- Weekdays 9:00 a.m. to 5:30 p.m.
Weekends and holidays 9:00 a.m. to 5:00 p.m. (Closed from Dec. 31 to Jan. 3)
Certified Personal Information Protection Organization
14. The Company is a member of the following Certified Personal Information Protection Organization.
Each group receives complaints and inquiries regarding the handling of personal information by its member companies.
All Banks Personal Data Protection Council (http://www.abpdpc.gr.jp/)
[Complaints and Inquiries Desks]
Japanese Bankers Association Customer Relation Center
Telephone 03-5222-1700