RedHead Co., Ltd. provides various service businesses (hereinafter referred to as “services”) including stamp card management applications.  We recognize the importance of the personal information of all people who provide personal information to us, including customers who use the service.  We will comply with laws and other standards related to the protection of personal information, establish voluntary rules and systems, establish a personal information protection policy that includes the following matters, and declare that we will implement and maintain it.

The Group will comply with laws related to the protection of personal information and other related laws, national guidelines and other standards regarding the handling of personal information handled by all businesses and personal information of employees, etc.
As described in “Handling of Personal Information”, the Group shall specify the purpose of use when acquiring and using personal information, and handle personal information that exceeds the scope necessary to achieve the specified purpose of use. We will not use it for any other purpose. In addition, we will take appropriate management measures to prevent unauthorized use.
As described in “Handling Personal Information”, the Group will not provide the acquired personal information to a third party, except when the consent of the person has been obtained, or in accordance with laws and regulations.
If we receive a complaint or consultation regarding the handling of personal information, the Group will promptly investigate the facts etc. of the content and respond in good faith within a reasonable period.
The Group will take organizational, human, physical and technical safety measures in order to properly manage the acquired personal information, and work to prevent and correct leakage, loss or damage of personal information.
The Group will continue to review the personal information protection management system related to the protection of personal information in light of changes in social conditions and the environment, and improve efforts to protect personal information.

Established: January 1, 2019
  Limited company RedHead

“Handling of personal information”

Article 1 personal information to be acquired
The Group will obtain the following personal information based on the law.
(1) Information related to service login and usage
-Account ID and password for service login
・ Gender, date of birth, postal code and email address as account registration information
・ Name, address, phone number, SNS account information, blog URL, self-introduction, profile image, height, physical characteristics and other information provided by the customer as information linked to the account
・ Information on the use of points, coupons, cashbacks and other services
・ Information on the execution of transactions conducted by customers through the use of the service and information on the details of the transactions
・ Information on posted content such as images, texts, comments, etc. provided by customers using the service posting function
・ Information on inquiries and communications from customers to our group
・ Identification documents (referred to as a copy of driver’s license, health insurance card, resident’s card, etc.) and information contained in the documents to verify your identity as required by law.
(2) Information about devices used by customers and information acquired using cookies, etc.
・ Information related to machine identification of information communication terminals
-OS information of information communication terminals
・ Information on connection to the Internet
· location information
・ Referrer information
・ IP address information
・ Time stamp information on the URL and date and time of browsing
・ Information on service usage
・ Advertising identifier information allocated to each customer terminal
-Server log information
(3) Information related to employees, etc.
・ Employee name (including temporary staff, part-time job), name, address, career history and other information related to employees
・ Information related to individuals such as business partners of the Group
(4) Information obtained from third parties
・ Information obtained from a third party with your consent
・ Information acquired based on laws and regulations
・ Information to be acquired through public disclosure
Article 2 Purpose of use of personal information
The Group will jointly use the personal information described in Article 1 within the scope of the following purposes based on the law.
(1) Service login and service use
・ For customers to log in to the service
・ To provide services suitable for customers
・ For the establishment and execution of transactions between customers and our group and other use of services by customers
・ To manage customers who are service members
・ For billing for services
・ For point service operation
・ For notification of matters necessary for service operation
・ For various service inquiries and after-sales service
・ To contact customers who have withdrawn from membership or to respond to various inquiries
・ To prevent and respond to fraud
(2) Advertising / Marketing
・ To solicit, advertise, or otherwise market services on the service or on third-party media
・ For sending e-mail magazines
・ For sending direct mail
・ For campaigns, sweepstakes planning, and questionnaires
(3) Product development and research
・ To investigate and analyze marketing data
・ To develop new services and products of the Group
(4) Employee management
・ For recruitment, labor, retirees and other labor management of the Group
・ For management of supplier information
Article 3 Consent to provide personal information
The Group will provide personal information to third parties when permitted by law or with the consent of the customer. However, in the following cases, the Group shall provide personal information to third parties to the extent necessary (in the case of No. 1 and No. 2, it is possible to directly identify specific individuals such as names and addresses). Information excluding information that can be).
(1) When necessary for service provision or quality improvement
(2) When necessary for the study and development of new services
(3) When entrusting the handling of personal information to a third party in a foreign country

Article 4 Staca’s Special Rules
The following rules apply to Staca operated by the Company.

(1) Disclosure of store information
Stamp card information and shop information created by store members will be displayed on Staca and made available to all customers.

(2) The Company will not be liable for any damage or loss resulting from the disclosure of information through the use of Staca unless there is intentional or gross negligence.

(2) Acquisition of personal information for customers under the age of 13
① Staca eligible users do not include those under 13 years old. We do not collect personal information of customers under the age of 13 and do not allow registration.

② If the Company reasonably determines that personal information has been obtained from a customer under the age of 13, the Group may delete such information at its own discretion. If you suspect that there is such a suspicion, please contact the contact address listed in Article 7. Even if any damage or loss occurs to the customer due to the deletion, the Group will not be liable for the damage or loss unless there is intentional or gross negligence.

(3) Termination of service and handling of information
When the customer completes the procedure to withdraw from Staca, or when the Company withdraws from Staca, the Group will immediately suspend the disclosure of customer information on Staca. However, some messages that have already been exchanged with other customers at the time of suspension or information provided through the sharing function may continue to be disclosed even after the suspension process. .

(2) Even after the suspension of disclosure in the preceding paragraph, the Group shall comply with the relevant applicable laws and regulations, and within the minimum necessary range for archiving of customer information for legitimate business purposes, will provide a reasonable security in terms of the Company’s technology. Can be held continuously with the secured storage method.

Article 5 About consultation and complaints regarding the handling of personal information
If you have any inquiries or complaints regarding our handling of personal information, please contact the following contact.

[Inquiries about personal information]