This Policy applies to the processing of your personal data by Shimadzu Rika Corporation (the “Company,” “we,” “our,” or “us”).

In this Policy:

We may collect information that you provide to us, whether by means of a form on our website, by email, in a letter, or otherwise, such as your name, address, email address, telephone number, fax number, workplace information, division and department, title, position, name of your contact group or organization, technical rank, password, details of your inquiry, information on whether we can send you direct mail, etc., products or fields in which you are interested, campaign codes, consent to acquisition or use of cookies, feedback to our website, etc.

We also may receive from our distributors and agents information, such as your name, address, email address, telephone number, workplace information, division and department, name of your contact group or organization, commercial negotiation or transaction status, commercial negotiation or transaction history, details of your inquiry, information on whether we can send you direct mail, etc., history of your participation in exhibitions, seminars, etc., information on a device that you use, history of your access to our and Shimadzu Group companies websites, etc.

When you visit our website, we may automatically collect the materials that you access, your download history, traffic data, location information, log, language information, dates and frequency of access, other communication information (including IP address, operating system, host domain, and type of browser), information on your computer and internet connection, and URLs of reference sources ("Communication Information").

If you are our or Shimadzu Group companies' employee, we may collect your name, email address, user ID, photo, address, telephone number, fax number, workplace information, division and department, schedule, attendance status, passport information, signature, etc. ("Employee Information"), as well as your login history, history of sending and receiving emails, certification log, email archive, history of use of Office 365, if you use Office 365 (email, SharePoint, Teams, Forms, etc.) ("System Information").

We use the Personal Data that we hold about you for the purposes set forth below. We will use your Personal Data only to the extent that it is necessary to do so to fulfill these purposes:

We may share your Personal Data with the following categories of recipients:

We may otherwise disclose your Personal Data to any third party other than those set forth above, including public agencies, if such disclosure is required to achieve the purposes for which you provided Personal Data to us or other purposes that we specify when obtaining consent or Personal Data from you, to the extent necessary to comply with any laws and regulations applicable to us, to cooperate with relevant governmental authorities and agencies, or to establish, exercise or defend legal claims.

Under Japanese law, we may use the joint use framework under the Act on the Protection of Personal Information to share with Shimadzu Group companies (including those Shimadzu Group companies located outside Japan) and the relevant agent in charge of you, your name, address, email address, telephone number, signature, name of your contact group or organization, commercial negotiation or transaction history, details of your inquiry, information on whether we can send you direct mail, etc., history of your participation in exhibitions, seminars, etc., information on a device that you use, history of your access to our and Shimadzu Group companies’ websites, for the purposes referred to in Section 4(a) to (g) above.

In addition, if you are a cooperating company (including a vendor, a contractor of manufacturing, a contractor of service, a receiver of our orders for services, etc.) or a person in charge therein, we may share your name, address, email address, telephone number, name of your contact group or organization, and transaction history with Shimadzu Group companies (including those Shimadzu Group companies located outside Japan) for the purpose referred to in Section 4(j) above.

If you are our employee, we may share your Employee Information and System Information with Shimadzu Group companies (including those Shimadzu Group companies located outside Japan) for the purposes referred to in Section 4(a), (b), (d), (e), (g), (j), (m), (n), (o), (p), (q).

In these cases, we will be the party responsible for the management of your Personal Data. Please refer to Section 10 below for our address and the name of our representative.

Your Personal Data may be provided to third parties outside Japan, such as Shimadzu Group companies located outside Japan, etc. The names of the countries outside Japan (excluding those countries provided by the Enforcement Rules for the Act on the Protection of Personal Information as foreign countries which have systems to protect personal information that are found to be on the same level as those of Japan in protecting personal rights and interests) where third parties to which we may provide your Personal Data are located (excluding those third parties which have established systems meeting the standards provided by the Enforcement Rules for the Act on the Protection of Personal Information), and information regarding the legislation to protect personal information in these countries are as set forth below. The third parties to which we may provide your Personal Data take all measures corresponding to the 8 Principles under the OECD Privacy Guidelines.

We will retain your Personal Data that we collect for the period necessary to Process such Personal Data.

You have a number of legal rights in relation to the Personal Data that we hold about you. These rights may vary depending on where you are located and which data protection laws apply to the relationship between you and us, but typically will include the following:

You may exercise any of your rights by contacting us, using the information about us set forth in Section 10 below. You also may lodge a complaint with the data protection authority if you believe that any of your rights has been infringed by us.

We take necessary and appropriate measures to prevent any leakage, loss of, or damage to, your Personal Data to be Processed and to otherwise control the security of personal information, such as clarification of the person responsible for or the person in charge of Processing of Personal Data, regular self-inspection of the Processing status of Personal Data, establishment of a system to report leakage, etc., formulation of rules on Processing, regular training of employees regarding Processing of Personal Data, management of entries into and exits from facilities, prevention of theft or loss of equipment for Processing Personal Data, appropriate discarding of Personal Data, ensuring the security of the systems and devices used, and implementation of access controls, etc. We also exercise appropriate supervision over our contractors and employees who Process Personal Data, and if we handle personal information outside Japan, we will grasp the country’s legislation to protect personal information and take appropriate security control measures.

If you have any questions about this Policy, your rights, or any other matter relating to the protection of personal information, please contact us at the following address: