1. Compliance with Law or Ordinance, and Norms, etc.

The Company handles personal information in compliance with the Act on the Protection of Personal Information, related law or ordinance, national guidelines, and other norms, and handles all personal information related to its business operations appropriately.

2. Purpose and Scope of Acquisition

The Company acquires, uses, and provides the personal information of its customers, etc., only through fair and lawful means. Except when otherwise provided by law or ordinance, etc., the Company acquires the personal information of customers, etc., only after informing them of the purpose of use. The Company ensures that all personnel who handle personal information are aware that it must be used solely within the scope of the stated purpose, and has implemented measures to prevent use outside of that scope.

3. Restrictions on Provision to Third Parties

Except when prescribed by law or ordinance, etc., the Company shall not provide the personal information of customers, etc., to third parties without obtaining the prior consent of the individual.

4. Implementation of Safety Measures

The Company shall endeavor to prevent and rectify risks such as leakage, loss, damage, or unauthorized access to the personal information of customers, etc., and shall implement all possible security control measures. When outsourcing the handling of the personal information of customers, etc., the Company shall carefully select outsourcing partners and exercise appropriate supervision. The Company has implemented the following measures for the secure management of personal data it holds.

1. Development of Rules Regarding the Handling of Personal Information
   The Company has established Personal Information Protection Regulations to stipulate handling methods and procedures for each stage of personal information acquisition, use, storage, provision, deletion, and disposal, etc., and has clarified persons responsible, persons in charge, and their roles.

2. Systematic Security Control Measures
   The Company has established a Personal Information Protection Manager as the person responsible for the handling of personal information, clarified the employees who handle personal information and the scope of personal information handled by such employees, and established a system for reporting to and/or contacting the Personal Information Protection Manager in the event of the discovery of an actual or suspected breach of the Act on the Protection of Personal Information or the Personal Information Protection Regulations. The Company conducts regular self-inspections to ensure that personal information is handled appropriately, as well as internal audits conducted by other departments.

3. Human Security Control Measures
   The Company provides regular training to employees on matters to be considered when handling personal information. Matters regarding confidentiality in the handling of personal information are stipulated in the work rules and related regulations.

4. Physical Security Control Measures
   In areas where personal information is handled, the Company controls employee access and the devices that can be carried into the area, and takes measures to prevent unauthorized persons from viewing personal information. The Company also takes measures to prevent the theft or loss of devices, electronic media, documents, and other materials that handle personal information.

5. Technological Security Control Measures
   The Company uses access control to limit the persons in charge of handling personal information and the scope of the personal information database, etc. they handle. The Company has also built various mechanisms to protect information systems that handle personal information from unauthorized access / hacking, or infection by malware.

5. Contact for Personal Information Consultations and Complaints

The Company shall respond appropriately and promptly to complaints and consultations regarding personal information. The Company shall also respond appropriately to requests for disclosure of personal information from customers, etc., using its prescribed methods.

6. Ongoing Improvement of Personal Data Protection Management System

The Company shall thoroughly educate and instruct all employees to ensure the appropriate handling of personal information pertaining to customers, etc., establish internal systems for the protection of personal information, maintain a personal information protection management system, and strive to continuously review and improve it.

7. Contact Details for Inquiries Relating to the Protection of Personal Information

Casa Co., Ltd. Personal Information Consultation Desk
■ Address:2-6-1 Nishishinjuku, Shinjuku-ku, Tokyo
■ Inquiry form:https://casa-inc.co.jp/contact/


Established: December 1, 2009
Revised: July 1, 2024
2-6-1 Nishishinjuku, Shinjuku-ku, Tokyo
Casa Inc.
Representative Director and President Seigo Miyaji

1. Purposes of Use of Personal Information

The Company uses personal information for the purposes stated below. The Company does not use personal information beyond the intended purposes of use without obtaining the prior consent of the individual.

1. Personal information of customers (*)

   ① To decide whether or not to conclude a guarantee commission agreement (including validating phone numbers entered into the guarantee application form)
   ② To conclude and execute a guarantee commission agreement or guarantee agreement (hereinafter collectively the “Guarantee Agreements”), including claims for guarantee commission fees and confirmation of their receipt
   ③ To manage and exercise appropriate claims, including the exercise of prior and subsequent recourse rights related to the performance of Guarantee Agreements
   ④ To execute proper control of Guarantee Agreements (including necessary control after the Guarantee Agreements expire)
   ⑤ For rent control and collection services under the Guarantee Agreements
   ⑥ To execute and control rent agreements and to settle payables and receivables after the expiration of those agreements
   ⑦ To process applications for household contents insurance and accident insurance
   ⑧ To provide real estate brokerage and mediation services
   ⑨ To process membership enrollment and withdrawal procedures for the Company’s various services incidental or related to Guarantee Agreements, and to perform such services
   ⑩ To provide employment support based on customer requests
   ⑪ To handle problems with locks, plumbing, windows, gas/water heaters, electricity, etc., in rental properties; to provide information and respond to inquiries regarding rental properties; and to provide customer health, medical, and lifestyle consultations, as well as support for resolving neighborhood disputes, etc.
   ⑫ To confirm, respond to, or otherwise address opinions, requests, consultations, etc.
   ⑬ To introduce products and services that the Company and its affiliated companies believe may be useful to customers, and to send catalogs, direct mail, samples, or other materials, or to distribute questionnaires

2. Personal information about business partners

   To perform obligations related to transactions and engage in communications necessary for business operations

3. Personal information about shareholders

   ① To exercise rights and fulfill obligations under the Companies Act and other law or ordinance.
   ② To provide various benefits from the Company for shareholders
   ③ To implement various measures to facilitate smooth relationships between shareholders and the Company and its subsidiaries
   ④ To manage shareholders, including the preparation of shareholder data in accordance with the standards specified under law or ordinance

4. Personal information about job applicants

   
   

   To conduct recruitment screenings and manage job offer recipients

5. Personal information about officers, employees, retirees, and their families

   To manage personnel and labor affairs, including attendance, labor relations,emergency contacts, etc.

6. Personal information about individuals who have contacted or visited the Company, as well as all matters described under the preceding items

   ① To communicate, manage responses, and send related materials, etc.
   ② To conduct security management, including site access control
   ③ To perform incidental work necessary to achieve the purposes stated under the above items.

   (* The principal debtor, principal creditor, joint guarantor, emergency contact, and cohabitants of the leased property (including all prospective individuals during the screening stage) as stated on the application and contract forms for guarantees or guarantee commission, as well as any person who has applied for or inquired about the use of the Company’s services)

2. Handling of Personal Information Requiring Extra Care and Consideration

The Company may request the submission of official documents containing sensitive personal information requiring extra care and consideration, or obtain medical histories, etc., for the purpose of determining whether to enter into Guarantee Agreements, and for the performance of such agreements. The Company may also lawfully acquire publicly disclosed sensitive personal information requiring extra care and consideration based on Article 20, Paragraph 2, Item 7 of the Act on the Protection of Personal Information. When acquiring such information, appropriate security measures shall be implemented for personal information containing sensitive personal information requiring extra care and consideration, in accordance with the Act on the Protection of Personal Information and relevant Company regulations.

3. Provision of Personal Information to Third Parties

1. The Company shall not provide personal information to third parties, except in the following cases.

① When the Company is required to send documents or mail items, make phone calls or use the internet, etc., to communicate with the landlord, tenant, recipients of child support, children subject to child support, payers of child support, housing land building agents, rental property management companies, renovation contractors, joint guarantors, tenant emergency contacts, cohabitants, employment support providers, companies with job openings, lawyers, financial institutions, insurance companies or other parties (including people in countries or regions designated by the rules of the Personal Information Protection Commission as foreign countries that have personal information protection systems that are recognized to be at the same level as Japan) within the scope of the purposes of use in “1. Purposes of Use of Personal Information” and within a reasonable scope necessary to perform the purposes of use
② When receiving an application for infrastructure services such as electricity, gas, water, or the Internet (hereinafter “Lifelines”) regarding a rental property in conjunction with an application for a guarantee agreement, and when providing the information necessary for the application procedure in writing, by post, by telephone, or by the Internet, etc., to the Lifeline application procedure agent
③ When prior consent has been obtained from the individual
④ When the provision of information is required by law or ordinance
⑤ When the provision of information is necessary for protecting human life, health or property, and it is difficult to obtain the consent of the individual
⑥ When the provision of information is especially necessary to improve public health or promote the sound growth of children, and it is difficult to obtain the approval of the individual
⑦ When there is a need to cooperate with a central government organization or a local government, or an agent acting on their behalf, performing duties prescribed by law or ordinance, and there is a possibility that obtaining consent from the individual could interfere with the performance of those duties



2. Provision of information to credit information agencies

The Company may provide the personal information of customers, as stated in guarantee commission application forms and guarantee commission agreements, to credit information agencies of which the Company is a member (hereinafter referred to as “Member Institutions”) and credit information institutions affiliated with Member Institutions (hereinafter referred to as “Affiliated Institutions”) when customers apply for the Company’s guarantee service, after obtaining their individual consent.

If a customer’s loan information and personal information are registered, the Company will receive such information and use it solely for the purpose of investigating repayment or payment capacity.
① Items of personal information to be provided
Name, date of birth, gender, address, phone number, place of employment, workplace phone number, driver’s license number, etc., information regarding contract details (contract type, contract date, guarantee start date, guarantee amount, rental application property information, etc.), information regarding repayment status (payment date, scheduled payment date, outstanding balance, full repayment date, delinquency, delinquency resolution, etc.), and information regarding details of transactions (debt collection, debt restructuring, guarantee fulfillment, bankruptcy filing, assignment of claims, etc.)
② Method of provision of personal information
Applicants enter data into dedicated forms on the websites of Member Institutions and Partner Institutions.
③ Names of Member Institutions and Partner Institutions
(Member Institutions)
Japan Credit Information Reference Center Corp. (JICC)
(Partner Institutions)
Japanese Bankers Association Personal Credit Information Center
CIC Co., Ltd.

4. Measures to Protect Personal Information

1. The Company shall endeavor to implement necessary security measures to prevent risks such as leakage, loss, damage, or unauthorized access to personal information under its control.

2. The Company shall endeavor to store personal information in a secure environment accessible only to authorized users.

3. When the Company outsources all or part of its handling of personal information, or provides personal information to third parties based on the consent of individuals, it shall exercise necessary and appropriate supervision to prevent leaks of personal information.

5. Revisions of Articles

Except when otherwise provided by law or ordinance, etc., the Company may revise the articles of this Policy as appropriate. Should such revisions potentially have a significant impact on the individual, the Company shall notify the individual or announce the changes through appropriate means, such as the Company’s website.

6. Voluntary Provision of Personal Information

Customers provide personal information to the Company voluntarily. However, if customers do not provide the necessary information, they may not be able to use the services provided by the Company.

7. Handling of Personal Information in a Way that Does Not Allow Individuals to Be Recognized Easily

The Company records telephone calls.

1. Personal information subject to disclosure

1. Basic information ・Matters relating to said person (Name, address, gender, telephone number, email address, etc.)
   ・Matters relating to the occupation or place of work (Name, location, telephone number, position, income, etc.)
   ・Matters relating to rental properties (Name, location, room number, monthly rent, parking fee, security deposit, etc.)
   ・Matters relating to the Guarantee Agreement (Guarantee Agreement date, guarantee period, guarantee commission, etc.)

2. Information relating to guarantee transactions Matters relating to the fulfillment of guarantee obligations (Rent payment situation, subrogation history, payment history, etc.)

3. Records of provision of personal information to third parties

2. Disclosure request procedures

When disclosing a notification of the purpose of use, basic information and guarantee transaction information or disclosing, adding, deleting, discontinuing use and provision of personal information to a third party, please download the written request for the disclosure of personal and written request to correct, add or delete personal information, respectively, fill in the necessary items, enclose an identification confirmation document and the disclosure service fee and mail it to the Company’s contact point stated in (6). Please note that the Company will not accept any requests through methods other than mailing them to the Company’s contact point.

1. Disclosure requesters A) Person in question
   B) Authorized representative concerning disclosure procedures

2. When requested by the person in question • Written request for the disclosure of personal information or written request to correct, add or delete personal information
   • Identity confirmation document
   • Disclosure service fee

3. When requested by an authorized representative • Written request for the disclosure of personal information or written request to correct, add or delete personal information
   • Power of attorney
   • Certificate of registered seal
   • Identity confirmation document of the authorized representative
   • Disclosure service fee

4. Identity confirmation document A confirmation of identity will be conducted for the said person and requester as part of the disclosure request procedures. Please bring the original or a copy of a form of identification that contains your name and address issued by a public institution exemplified below within three months after it has been created or is currently valid.
   
   • Driver’s license (excluding one's legal domicile)
   • Passport
   • Basic resident register card with photo
   • Health insurance card
   • Pension book
   • Residence card

5. Disclosure service fee When the request is for the disclosure of personal information or for the notification of the purpose of use, the following disclosure service fees are required for each request. Please prepare a postal money order for the disclosure service fees. The disclosure service fees may not be returned in the event that the Company does not possess the applicable personal information or cannot disclose possessed information in accordance with the provisions of laws and regulations.
   
   A) Disclosure of personal information or notification of the purpose of use: 1,100 yen (tax included)
   B) Disclosure of information relating to guarantee transactions: 2,200 yen (tax included)

6. Mailing address Please confirm the content filled out in the prescribed disclosure request form and that the necessary documents are enclosed, and mail it to the following address:
   Casa Inc. Personal information consultation desk
   Shinjuku Sumitomo Building 30F
   2-6-1 Nishishinjuku, Shinjuku-ku, Tokyo 160-0023

7. Method of response to inquiries The Company shall send the “responses relating to the disclosure of personal information” or the “responses relating to the correction, addition or deletion of personal information” to the address of the requesting party by certified mail with delivery restricted to the addressee. However, the following requests may not be disclosed. In these events, the Company shall provide notification together with the reason therefor.
   
   A) When the said person or representative cannot be identified.
   B) If the disclosure request or identity confirmation document is incomplete.
   C) In the event that the information matters subject to the disclosure request procedures do not apply with the personal information subject to disclosure.
   D) In the event that there is a possibility of informing said person or a third party would harm his/her or the third party's life, body, fortune, or other rights and interests.
   E) In the event that there is a possibility of interfering seriously with the said personal information handling business operator implementing its business properly.
   F) In the event that it may be a violation of other laws or regulations.

8. Purpose of use of personal information acquired through the procedures The personal information acquired by the Company through the disclosure request procedures may be used to investigate said procedures, and for responses regarding the identity confirmations of the person in question and representative and disclosure request procedures.

9. Job title and contact information of personal information of the personal information protection administrator General Manager of Human Resources & General Affairs Department : 03-6863-5968

10. Contact information for complaints regarding the handling of retained personal information data Casa Inc. Personal information consultation desk
    Address : Shinjuku Sumitomo Building 30F, 2-6-1 Nishishinjuku,
    Shinjuku-ku, Tokyo
    Tel : 03-6863-5968
    Business hours : 9:00AM-6:00PM on weekdays (excluding weekends,
    holidays, and the year-end and New Year holidays)

11. Name of the authorized personal information protection organization belonging to the Company and contact information for complaints Name of authorized personal information protection organization: Japan Institute for Promotion of Digital Economy and Community
    Contact information for complaints: Personal information complaint consultation office
    Address: Roppongi First Building, 1-9-9 Roppongi, Minato-ku, Tokyo 106-0032
    Telephone number: 03-5860-7565 / 0120-700-779