Privacy Policy
The "Privacy Policy" (hereinafter referred to as "this Policy") is the policy of the “New Chitose Airport Website” (hereinafter referred to as the “Site”) operated by Hokkaido Airports Co., Ltd. (hereinafter referred to as “we”, "our Company"). This document provides information about how our Company manages the personal data of users of the Site (hereinafter referred to as the “Users”).
Acquisition, use, and management of personal information
Any personal information provided by customers through this website will be handled as follows:
1. User personal data handled by our Company
We process the following categories of personal data in operating the Site:
- Personal Identification Information: Name (This will only be collected from those who contact our Company using the contact details in Section 9 regarding the User rights in Section 6 or this Policy.)
- Contact Information: Email address (This will only be collected from those who contact our Company using the contact details in Section 9 regarding the User rights in Section 6 or this Policy.)
- Technical data: Information associated with the use of cookies and other similar technologies (please see the Cookie Policy for details on the processing of cookies, etc.), browsing history (the history of Users browsing this Site, including IP addresses, country (region) of residence inferred from IP address, timestamp, etc.)
2. Handling of personal data
We process Users’ personal data for the purposes identified in this Policy.
We ensure that the personal data processed is adequate, relevant and limited to what is necessary in relation to the purposes for which it is to be used.
We will notify Users if we process their personal data for reasons other than those for which it was originally intended.
In addition, we will process Users’ personal data for the following purposes based on the following legal bases below.
Furthermore, we will not use Users’ personal data for any exclusively automated processing, including systematic profiling.
Purpose of Use of Personal Information
Except as required by law or with the consent of the individual, personal information acquired by our Company will not be used beyond the scope necessary to achieve the purposes of use set forth below.
①To ensure safety and maintain order at airports that we manage and operate
②To keep records of airport conditions and conversations with customers for crime prevention purposes and in case of unforeseen accidents, etc.
③To make necessary contact regarding customers' opinions, requests, complaints, etc.
④For promotions, market research, improving sales activities, etc.
⑤Other reasons for which it becomes necessary to contact customers
3. Storage times for personal data
Except in cases where such storage is mandated by law, we will retain Users' personal data for as long as it takes to handle it for the aforementioned purposes.
We are required to process Users’ personal data for as long as our relationship with Users continues in the operation of the Site.
Even after such a relationship has ended, to the extent allowed by applicable laws, we may need to retain Users’ personal data for a certain period of time in order to conduct our business.
4. Disclosure of personal data, etc.
In compliance with the Act on the Protection of Personal Information, we will promptly respond to requests for disclosure, correction, addition, or deletion of personal information, suspension of provision to a third party, or disclosure of records pertaining to provision to a third party to a reasonable extent after verifying that the request was made by the customer.
5. Sharing of personal data
In order to operate this Site efficiently, we may share Users’ personal data with our affiliates and service providers as follows:
- Amazon Web Services (AWS) (US): Cloud Hosting Services
- Google LLC (US): Data analysis using Google Analytics services
- OneTrust LLC (US): User consent management
- Service provider (Japan): This refers to service providers in the IT sector, such as Internet service providers and cloud service providers.
- Contractor (Japan): This refers to an outsourced contractor for the installation and maintenance of information equipment, and the development, maintenance, monitoring, and support of information systems.
If we transfer Users' personal data outside the European Economic Area, we shall ensure an appropriate legal framework by establishing standard contractual clauses as defined by the European Commission in accordance with Article 46(2)(c) of the GDPR. You can request a copy of the aforementioned non-confidential information about our data transfers by contacting us using the details below.
We may transfer personal data to [Amazon Web Services (AWS) (US), Google Inc. (US), service providers (Japan), and contractors (Japan)].
In the context of an investigation or legal proceedings, it may be necessary for us to disclose Users’ personal data to the relevant authorities or courts, and we may be obligated to do so at the direction of the relevant authorities or courts.
We may also disclose Users’ personal data if we believe in good faith that disclosure is reasonably necessary to defend our rights and obtain available remedies.
6. User rights
Users have the following rights regarding our processing of their personal data:
- Information about the processing of Users’ data: The Users have the right to obtain from us all necessary information about our personal data processing activities.
- Access to personal data: The Users have the right to ask us to confirm whether or not personal data concerning them is being processed and, if such is the case, have the right to access that personal data and information pertaining to it to an extent.
- Restrictions on handling of personal data: Under certain conditions, the Users have the right to ask us to restrict the processing of their personal data.
- Objection to the processing of personal data: Under certain conditions, the Users have the right to object at any time to our processing of their personal data on grounds relating to their personal circumstances.
If you wish to exercise any of the above rights, please contact us via the contact information below.
If you are not satisfied with how we respond to your request or have a complaint about how we handle your personal data, you may lodge a complaint with the supervisory authority in the Member State in which you live or work or which has jurisdiction over a breach of the GDPR.
7. Management of Personal Information
When personal information is no longer necessary in light of the purpose of its use, our Company will erase or discard the said personal information. Such deletion and disposal will be carried out in a necessary and appropriate manner so as to prevent leakage to outside parties and other such misuse.
We will take measures deemed necessary and appropriate to prevent the leakage, loss, or damage of personal information and to manage said information in a safe manner.
We will provide the necessary and appropriate supervision to our employees to ensure the proper handling of personal information.
Specifically, we will thoroughly implement the following measures regarding the management of personal information:
(1) Ensuring accuracy of information
We will endeavor to ensure that information provided by customers, business partners, etc. is always accurate and up-to-date.
(2) Safety control measures
We will enact strict internal regulations regarding the management of personal information, and following said regulations.
(3) Supervision of employees
We will formulate personal information protection regulations and ensure their strict implementation through employee education.
(4) Supervision of contractors
We will only entrust the handling of personal information to contractors who meet the requirements of the Personal Information Protection Regulations, and will manage the contractors accordingly.
Change in purpose of use of personal data
In principle, the Company will not change the purposes of use specified in "2. Handling of personal data" above, unless the prior consent of the individual is obtained.
However, an exception is made when the new purpose of use is judged to be reasonably related to the original purpose. In such a case, the new purpose of use will be disclosed to the public before enactment.
8. Updates to this Privacy Policy
We may revise or update this Policy from time to time. Any changes to this Policy will become effective when we post the updated Policy on this Site.
9. Contact information
If you have any questions or requests regarding this Policy, please contact us via the following:
[Hokkaido Airports Co., Ltd.]
〒 066-0012
987-22 Bibi, Chitose-shi, Hokkaido
Tel: 0123-46-2990
Personal Information Complaint and Inquiry Desk