1.Basic policy

Morioka Terminal Building co.,Ltd. (hereinafter referred to as "The Company") has established this privacy policy and the organizational system on the handling of the personal information of all stakeholders (customers, job applicants, external business partners of The Company, etc.) who use the corporate website of The Company (hereinafter referred to as "The Website") and strives for the appropriate protection of personal information.

1. (1)Acquisition of personal information

   The Company acquires the following personal information for the purpose of providing services or business operations of The Company. The Company acquires personal information within the scope of its intended purposes of use and clearly explains purposes of use, the scope of utilization, and the inquiries office of The Company, etc.

2. (2)Prohibition on the use of personal information beyond the intended purposes and the provision of personal information to third parties

   The Company uses personal information within the scope of its intended purposes of use, appoints a Personal Information Protection Manager and has established the organizational system for the protection of personal information. The Company deals with personal information adequately and does not provide or disclose personal information to third parties without the consent of Persons Concerned or request by laws and regulations.

3. (3)Assigning of personal information

   In case that The Company entrusts all or part of personal information, The Company prohibits entrusted persons from leaking or providing personal information to third parties by contract and supervises entrusted persons appropriately.

4. (4)The rights of Persons Concerned

   The specific individuals identified by personal information (hereinafter referred to as "Person/s Concerned") have the right to withdraw their consent to the use of personal information at any time even if they had consented to the intended purposes before. In addition, Persons Concerned have the right to request The Company for a utilization cease, disclosure etc. of the retained personal information pursuant to the provisions of applicable laws.

5. (5)Procedures of a utilization cease, disclosure etc. of personal information

   In case that Persons Concerned request The Company a utilization cease, disclosure etc. of the retained personal information, they shall contact the inquiries office specified by The Company. The Company shall respond as soon as reasonably possible.

6. (6)Observance of laws and regulations

   The Company observes applicable laws, regulations and standards, provides in-house education, informs employees of this privacy policy and strives for the improvement of understandings of employees on the handling of the retained personal information.

7. (7)The review and improvement of the system for the protection of personal information

   The Company will continuously evaluate and review this privacy policy and the systems for the protection of personal information. The Company will maintain and improve the actions for the protection of the retained personal information.

8. (8)Handling personal information by link destinations

   The Company shall bear no responsibility with regard to the handling of personal information by other entities or individuals linked to The Website.

9. (9)Regarding publishing this privacy policy

   The Company’s privacy policy shall be made available to the public at all times, such as by posting it on the Company’s website.

   • [FES"AN] http://www.fesan-jp.com/fesan/
   • [Hotel Metropolitan Morioka] https://morioka.metropolitan.jp
   • [Hotel Mets Kitakami] http://www.hotelmets.jp/kitakami/
   • [Hotel Mets Hachinohe] http://www.hotelmets.jp/hachinohe/

2.Definition of personal information

The term "personal information" in this privacy policy means information related to a living individual that can identify a specific individual by name, date of birth or other description contained in. (This includes the "personal information" defined by Article 2(1) of the Act on the Protection of Personal Information.)

3.Acquisition and purposes of use of personal information

The Company acquires and uses the following personal information for the following intended purposes. The Company does not use personal information beyond the scope of intended purposes of use without the consent of the Persons Concerned.

1. (1)Personal information of customers

   1　Personal information acquired

   Name, age, gender, date of birth, occupation, address, telephone number, email address, nationality, passport number and other information necessary for the following purposes of use.

   2　Purposes of use

   1. <1>For performing works required to provide services at The Company (accommodation, restaurants, shops, banquets, wedding receptions, catering).
   2. <2>For the purpose of entering into, implementing and managing agreements for the provision of products and services, and for the purpose of providing products and services and the execution of after-sales services under these agreements.
   3. <3>For offering on-line booking and other related businesses.
   4. <4>For handling inquiries and requests, etc.
   5. <5>For providing necessary information on the products, services, events and other related business activities of The Company.
   6. <6>For providing information on the products, services and events of The Company to the customers who have consented to sending by direct mail, email and LINE, etc.
   7. <7>For offering prizes or campaigns.
   8. <8>For the purpose of ascertaining the usage status of the Company’s products, services and events and analyzing their status to improve their quality. For the purpose of analyzing the Company’s business performance.
   9. <9>For the purpose of providing information on market trends related to services, etc. provided by directly managed stores/hotels and tenants located there.
   10. <10>For the purpose of request receiving and credit protection with respect to charges made etc. for products and services (including requests to consumer credit companies etc. to proceed with processing credit card payments etc.)
   11. <11>For exercising rights and performing duties based on laws and the provisions of terms and conditions for accommodation.
   12. <12>For the purpose of ensuring the safety of customers and employees.
   13. <13>For the purpose of maintaining facilities, equipment and devices, and for managing their statuses.
   14. <14>For the purpose of examining and developing new products and services, and the software, systems, equipment, devices, etc. that provide those products and services.
   15. <15>For other purposes of use indicated at the time of acquisition of personal information.
2. (2)Personal information of job applicants

   1　Personal information acquired

   Name, age, gender, date of birth, address, telephone number, email address, and other information necessary for the following purposes of use.

   2　Purposes of use

   1. <1>For performing works required for recruitment activities and the procedures and contracts of employment.
   2. <2>For handling inquiries and requests, etc.
   3. <3>For other purposes of use indicated at the time of acquisition of personal information.
3. (3)Personal information of external business partners of The Company

   1　Personal information acquired

   Business card information and other information on external business partners of The Company necessary for the following purposes of use.

   2　Purposes of use

   1. <1>For concluding and performing contracts with external business partners of The Company and other works required.
   2. <2>For handling inquiries and requests, etc.
   3. <3>For other purposes of use indicated at the time of acquisition of personal information.

4. Handling of personal information

1. (1)Appropriate management of personal information

   The Company appropriately implements management of personal information, takes appropriate safety measures including reasonable technological measures to prevent unauthorized access, damage, falsification and leakage of personal information. The Company continuously strives to maintain and enhance the management system of personal information.
   The Company strives to keep the personal information accurate and up to date within the scope of purposes of use, limits the employees who can access or handle it and exercises appropriate supervision over them.
   
   The Company stores the personal information on the database of The Company or third-party service providers that The Company has concluded contracts with.
   
   The Company sets expiration dates for the storage of personal information within necessary period for purposes of use and deletes the personal information without delay after expiration dates unless otherwise specified in laws and regulations.

2. (2)Safety measures on the internet

   The Company implements the following safety technologies in the use of its on-line booking system though these do not guarantee a complete security environment.

   1. 1SSL

      The Company uses SSL (Secure Sockets Layer) encryption technology on The Website where personal information is inputted.
      With SSL, data is transmitted to the registered computer through a network after being encrypted. (SSL is a technology that prevents theft or alteration of data by encryption and authentication in communication between the browser and the WWW server.)

   2. 2Cracking by unauthorized access

      The Company installs a firewall to prevent unauthorized access from outside.

5.Sharing of personal information

The Company shares personal information within the scope of its intended purposes of use as follows.
When the sharing users have established policies for personal information, their policies shall be applied for their use.

1. (1)Sharing of personal information on the business of The Company
   (accommodation, restaurants, shops, banquets, wedding receptions, catering.)
   1. 1Scope of the sharing users

      Member companies of The Members' Organization, the JR Hotel Group and JR-East Hotels.

   2. 2Purposes of sharing use

      For providing services at The Company (accommodation, restaurants, shops, banquets, wedding receptions, catering) and offering on-line booking reservations, and other related businesses.

   3. 3Categories of sharing Information

      Member number, password, name, age, gender, date of birth, address, telephone number, email address, employer information and history of providing and use of points and other information necessary for the above purposes of sharing use.

   4. 4Person responsible for personal information

      Nippon Hotel Co., Ltd.

2. (2)Sharing of personal information for the service at all tenant shops in the hotels that The Company operates
   1. 1Scope of the sharing users
      • All shops in FES"AN,
      • Hotel Metropolitan Morioka, Hotel Mets Kitakami, Hotel Mets Hachinohe, and all shops in those hotels
   2. 2Purposes of sharing use

      For the purpose of performing the required work tasks within the purposes defined in Section 3, Paragraph (1), Item 2 of this privacy policy.

   3. 3Categories of sharing Information

      Name, address, telephone number, email address, and other information necessary in the scope of above purposes of sharing use.

   4. 4Person responsible for personal information

      Morioka Terminal Building co.,Ltd.

3. (3)Co-use of JRE POINT member information

   With respect to the JRE POINT services operated by East Japan Railway Company (hereinafter referred to as “JR East”), the Company provides JRE POINT member information for co-use as follows in accordance with the JRE POINT Terms of Membership. In providing member information for co-use, the Company shall make every effort to manage and administer the member information in accordance with provisions of the Act on the Protection of Personal Information and its guideline.

   1. 1Scope of co-users

      JR East and its group companies listed in JR East’s financial statements.
      * Companies that are actually co-using information are listed in the following PDF file.
      Scope of co-users (PDF file)

   2. 2Purposes of co-use
      • For the purpose of providing the JRE POINT services and providing loyalty rewards to members based on collected points.
      • For the purpose of conducting market surveys and product development based on the usage status of the JRE POINT services.
      • For the purpose of contacting members as necessary regarding business transactions and checking details of business transactions.
      • For the purpose registering and maintaining/managing member organizations of personal information co-users according to the JRE POINT Terms of Membership.
      • For the purpose of providing member information to third parties with the purpose of providing the JRE POINT services in accordance with procedures that conform to laws and regulations.
      • For other purposes equivalent or relating to any of the foregoing purposes.
   3. 3Categories of co-use of information
      • Information provided by each member upon applying for membership and after becoming a member such as name, address, telephone number, gender, email address, etc.
      • Information on the agreement between each member and JR East relating to JRE POINT such as the date of registration and the membership number.
      • Information on how members use JRE POINT services and which is obtainable upon inquiry by phone, etc. (including conversation during phone calls).
   4. 4Person responsible for personal information

      East Japan Railway Company

6.Provision of personal information to third parties

The Company does not provide personal information to third parties without obtaining the consent of Persons Concerned in advance except in cases set forth in the following categories.

1. (1)Cases where The Company provides personal information to third parties
   1. 1Cases based on laws and regulations
   2. 2Cases where there is a need to protect a human life, body or fortune, and when it is difficult to obtain the consent of Persons Concerned
   3. 3Cases where there is a special need to enhance public hygiene or promote fostering healthy children, and when it is difficult to obtain the consent of Persons Concerned
   4. 4Cases where there is a need to cooperate in regard to a central government organization or a local government, or a person entrusted by them performing public affairs, and when there is a possibility that obtaining the consent of the Persons Concerned would interfere with the performance of the said public affairs
   5. 5Cases where disclosure or provision to a third party has been requested clearly by Persons Concerned
2. (2)Disclaimer regarding provision to a third party

   In the following cases, The Company will bear no responsibility whatsoever with regard to the acquisition of personal information by third parties.

   1. 1Cases where personal information is disclosed to an accommodation facility by Persons Concerned (if Persons Concerned discloses personal information of companions at the time of reservation, it is assumed that the consent of those companions is obtained at the responsibility of the Person Concerned)
   2. 21 Cases where personal information is disclosed to third parties by Persons Concerned
   3. 3Cases where personal information is provided to or used on external websites linked to The Website by Persons Concerned
   4. 4Cases where third parties obtain information that could identify an individual (password, etc.) for reasons not attributable to The Company
3. (3)Appropriate management and supervision over entrusted persons

   In case of The Company entrusts the handling of personal information to third parties within the scope of intended purposes of use, The Company shall take appropriate consideration for the selection of entrusted persons, conclude a non-disclosure contract with them, guide them for the proper management of personal information and exercise appropriate supervision over them.

7.Transfer of personal information outside of the European Economic Area (EEA)

The Company may transfer the personal information of Persons Concerned who reside in the European Economic Area (EEA) to the terrain outside of the EEA and use within the scope of intended purposes of use. In these cases, The Company shall appropriately and strictly handle the personal information under applicable laws.

8.Rights of Persons Concerned

Persons Concerned have the right to demand actions such as the notification of the purposes of use, disclosure, correction, deletion, utilization cease, or ceasing of provision to third parties (hereinafter referred to as "Utilization cease, Disclosure, etc.") of the retained personal information pursuant to the provisions of applicable laws. Persons Concerned have the right to withdraw their consent to the use of personal information at any time even if they had consented to the intended purposes before.
Persons Concerned have the right to object to their local supervisory authorities with jurisdiction over the protection of personal information if they are dissatisfied with the handling of personal information by The Company.

9.Procedures of Utilization cease, Disclosure, etc.

1. (1)When the Company is requested to disclose, etc. personal information possessed by the Company, the Company disclose etc. the information within a reasonable period and to the extent provided by laws, regulations, etc. after the Company has confirmed that the request was made by the Person Concerned or a representative authorized by the Person Concerned. Please note that for some requests for disclosure, etc., the requester shall be required to pay a fee.
2. (2)Definition of “disclosure, etc”
   1. ①Notification of the purposes of use (fee charged)
   2. ②Disclosure (fee charged)
   3. ③Correction of, addition to or deletion of personal information
   4. ④Utilization cease or erasur
   5. ⑤Discontinuance of provision to a third party

   Please note that if utilization of personal information is ceased or personal information is erased as requested, the Company may unwillingly become unable to provide products and goods which satisfy needs of the Person Concerned. In addition, please bear in mind that the Company may not cease utilization of or erase personal information as requested in the event that the Company possesses the personal information in accordance with relevant laws and regulations.

3. (3)Contact information for requesting disclosure, etc.

   Address:1-44 Morioka-Ekimae-Doori, Morioka-shi, Iwate, Japan (zip code: 020-0034)
   Morioka Terminal Building Co., Ltd. Attn. Window for Personal Information
   Office hours: 10.00 - 17.00 (excluding weekends and public holidays)

4. (4)Request form for disclosure, etc. and other documents

   When requesting disclosure, etc., please obtain and completely fill in the following request form (a) and then send it together with a document for identification of a Person Concerned (b) to the “Window for Personal Information” above by means where delivery is recorded such as a registered mail, a simplified registered mail and a specific recorded mail.

   1. a.Request form specified by the Company

      Request form for disclosure, etc. of personal information (form specified by the Company)

      1. ①Download [PDF file] (43KB)
      2. ②FAX 019-654-7975
      3. ③Postal mail 1-44 Morioka-Ekimae-Doori, Morioka-shi, Iwate, Japan (zip code: 020-0034)
         Morioka Terminal Building Co., Ltd. Attn. Window for Personal Information

      Please send a document by FAX or a post card on which the requester clearly states the intention to obtain a request form and which contains the name and FAX number of the requester (for obtaining the request form via FAX) or the name and postal address of the requester (for obtaining the request form via a postal mail) to the FAX number or postal address specified in (2) and (3) above.

   2. b.Document for identification of a Person Concerned

      Copy of an official document such as a health insurance card, a pension handbook, a certificate of a registered seal and a driver’s license.

5. (5)Request for disclosure, etc. made by a representative

   If a requester for disclosure, etc. is the legal representative for a Person Concerned, a minor or an adult ward, or a representative to whom a Person Concerned has delegated the authority to request disclosure, etc., please send the following documents together with a document listed in the preceding paragraph.

   1. ①Document for identification of the representative

      Copy of an official document such as a health insurance card, a pension handbook, a certificate of a registered seal and a driver’s license.

   2. ②Documentation for confirmation of authority of representation
      1. (i)If the requester is a minor or an adult ward: a copy of a document which certifies that a representative has legal authority of representation such as a transcript of the family register of the legal representative and a certificate of registered matters for guardianship.
      2. (ii)If the requester delegates authority to request disclosure, etc.: a letter of attorney for the request or an original certificate of the registered seal of the requester (which has been issued within three (3) months and where the seal is affixed in a blank space).
6. (6)Fee charged for a “request for disclosure” and payment method
   1. ①Fee charged: 600 yen per request
   2. ②Payment Method: Enclose stamps amounting to 600 yen with the request documents.
   3. ●If the amount is insufficient or the stamps are not enclosed, the Company will notify the requester or the representative if applicable of such situation. However, if payment is not made within two (2) weeks after notice is provided, the Company will deem that there has been no request for disclosure.
7. (7)How notification of the result of a request for disclosure, etc. is given The Company will give written notice to the requester (to the name and address of the requester specified in the request form for disclosure, etc.) by certified mail with delivery restricted to the addressee (postal service of JAPAN POST Co., Ltd).
8. (8)Purposes of use of personal information obtained in connection with a request for disclosure, etc.

   The Company shall process personal information obtained in connection with a request for disclosure, etc. only to the extent necessary for the request for disclosure, etc. The Company shall store submitted documents for two (2) years after completion of a response to a relevant request for disclosure, etc. and shall dispose of them thereafter.

9. (9)In the event that the Company makes no disclosure, etc.

   The Company shall not disclose personal information in any of the following cases. If the Company decides not to disclose personal information, the Company will notify the requester of such decision and the reason. Please note that the fee charged for the request for disclosure, etc. shall not be refunded even in the event of non disclosure.

   1. ●Some information in a request form for disclosure, etc. is incorrect or missing.
   2. ●In the event of a request allegedly made by a Person Concerned, the Company cannot confirm that the requester is the Person Concerned.
   3. ●In the event of a request allegedly made by a representative, the Company cannot confirm that the requester has authority of representation.
   4. ●Information subject to the request for disclosure, etc. is not “retained personal data”.
   5. ●The “retained personal data” subject to the request for disclosure, etc. does not exist.
   6. ●In the event of a “request for disclosure of the purposes of use”, the purposes are clear.
   7. ●In the event of a “request for correction, addition or deletion”, the retained personal data subject to the request is correct or such correction, etc. is not necessary in light of the purposes of use.
   8. ●In the event of a “request for utilization cease or erasure”, the Company processes the personal information subject to the request to the extent necessary to achieve the purposes of use which have been specified in advance or the Company has obtained said information in any proper manner.
   9. ●In the event of a “request for utilization cease or erasure”, considerable costs will be incurred in such cease or erasure or otherwise it is difficult to cease using or to erase the information subject to the request, and the Company takes necessary alternative measures to protect the rights and interests of the Person Concerned.
   10. ●The disclosure is likely to harm the life, body, property, or other rights or interests of the Person Concerned or a third party.
   11. ●The disclosure is likely to seriously impede the proper execution of the business of the Company.
   12. ●The disclosure violates other laws and regulations.
   13. ●The requester fails to pay the fee charged for the request.

10.Protection of the personal information of minors

The Company handles the personal information of minors appropriately in accordance with this privacy policy. When Persons Concerned is minor, The Company may require the consent of persons in parental authority for acquiring the personal information. If Persons Concerned is less than 13 years of age, The Company shall require the consent of persons in parental authority and give special consideration to the handling of their personal information.

11.Use of cookies

The Website may use cookies to improve the information and services provided and to offer comfortable use of The Website. For details, please refer to the "Cookie policy" of The Website.

12.Handling of access logs

The Website may acquire access logs to improve the use of The Website and to analyze statistical data. The Company does not disclose access logs to third parties unless otherwise provided by laws and regulations. If you refuse to send access logs, you may not use The Website properly.

13. Revision of this privacy policy

The Company will revise this privacy policy to respond to changes in related laws, regulations or the social environment, etc. The Company will post the revised privacy policy on The Website.

14.Personal information inquiries office

Please contact the personal information inquiries office below when you have any inquiries about this privacy policy.

Office hours: 10.00 - 17.00 (excluding weekends and public holidays)Personal Information Protection Manager: General Manager, General Affairs Division, Morioka Terminal Building co.,Ltd.

• [FES"AN]

  Address:1-44 Morioka-Ekimae-Doori, Morioka, Iwate, Japan (zip code: 020-0034)
  FES"AN. Attn. Window for Personal Information
  Email address: e-mail@fesan-jp.com

• [Hotel Metropolitan Morioka]

  Address:1-44 Morioka-Ekimae-Doori, Morioka, Iwate, Japan (zip code: 020-0034)
  Hotel Metropolitan Morioka. Attn. Window for Personal Information
  Email address: metro@mtb.jregroup.ne.jp

• [Hotel Mets Kitakami]

  Address: 1-1-34 Oodori, Kitakami, Iwate (zip code: 024-0061)
  Hotel Mets Kitakami. Attn. Window for Personal Information
  Email address: kitakami@mtb.jregroup.ne.jp

• [Hotel Mets Hachinohe]

  Address: 1-1 Tateda, Shiriuchi, Hachinohe, Aomori (zip code: 039-1101)
  Hotel Mets Hachinohe. Attn. Window for Personal Information
  Email address: hachinohe01@mtb.jregroup.ne.jp