Micoworks, Inc. and its group companies (hereinafter referred to as "the Group"), as an organization that handles personal information, recognize the protection of personal information as an important social responsibility.
The Group prioritizes the protection of personal information as one of it’s top priorities. To ensure this commitment is effectively implemented, the Group has established the following Personal Information Protection Policy. The Group is dedicated to building a system for protecting personal information and ensuring that all employees understand the importance of information security.

1. Acquisition, Use and Provision of Personal Information

Personal information handled by the Group will entail appropriate acquisition, utilization, and provision, ensuring that personal information is not handled beyond the scope necessary for achieving the specified purpose of use. The Group will also take measures to ensure compliance with these standards.

2. Laws, Guidelines, and Standards

The Group will comply with laws, guidelines, and other standards set forth by the government regarding the handling of personal information.

3. Measures for the Secure Management of Personal Data

The Group will take strict technical and organizational security measures to prevent unauthorized access to personal data, as well as leakage, loss, or damage of personal data, and for other aspects of ensuring the security management of personal data. In addition, in order to continuously improve the protection of personal data, the Group will review and improve internal regulations and other measures established in accordance with changes in laws and social norms.

4. Complaints and Consultation

The Group will promptly respond to complaints and consultations regarding personal information.

5. About the Personal Information Protection Management System

The Group's personal information protection management system will be reviewed and improved continuously in a timely and appropriate manner.

The Group is deeply aware of the importance of protecting personal information, and will handle personal information appropriately as described below in accordance with the "Personal Information Protection Policy.” In addition, the Group will use and handle specified personal information in accordance with the provisions of the "Act on the Use of Personal Information to Identify Specific Individuals in Administrative Procedures" (hereinafter referred to as "My Number Act") and other related laws, regulations, and guidelines, etc., concerning the proper handling of specified personal information.

1. Purpose of Personal Information Use

The Group will use the personal information acquired from customers, etc. for the following purposes:
1. Personal Data in the Group's Possession and Purpose of Use

Item	Purpose of Use
Personal information entered at the time of inquiries, requests for information materials, and downloads from Group's website Access information such as browsing history on Group's website Personal information you provide when registering for Group's seminars and campaigns	(1)Correspondence for inquiries, material requests, and communication related to downloads. (2)To conduct sales activities, distribute and display advertisements, and measure their effectiveness. This includes comparing the contents of customer inquiries with access information, such as browsing history, and analyzing requests, etc., and conducting sales activities and distribution of advertisements, etc., based on the results. (3)Recruitment selection and offer management. *The Group may entrust the handling of personal information acquired to other group companies to the extent necessary to achieve the purpose of use.
Personal information concerning the directors, officers, employees, etc. of the Group's business partners and other companies	(1)Various communications, business negotiations, etc. necessary for business (2)Management of client information, payment and income processing (3)Distribution, display and effectiveness measurement of advertisements
Personal information such as resumes of applicants for employment with the Group	(1)Recruitment selection and offer management *The Group may entrust the handling of personal information acquired to other group companies to the extent necessary to achieve the purpose of use.
Personal information of the Group's directors, employees and their relatives	(1)Business communication, employment management, tax and social security procedures, payroll management, personnel assessment, health management, and labor management (2)Posting on our website's company profile, business introduction page, etc. of the Group's website *The Group may entrust the handling of personal information acquired to other group companies to the extent necessary to achieve the purpose of use.
Identified Personal Information	The Group will handle and use personal information only within the scope of the administrative work that handles personal numbers as stipulated by the My Number Act. In addition, the Group will not use specified personal information beyond the purpose of use, even with the consent of the individual, except when necessary for the protection of a person's life, body, or property.

2. Personal Data Handled Other Than the Above and the Purpose of Use

Item	Purpose of Use
Your personal information stored in the services the Group provides	(1)Operation of services provided
Personal information such as resumes of employment applicants received from recruitment agencies and services	(1)Recruitment selection and offer management *The Group may entrust the handling of personal information acquired to other group companies to the extent necessary to achieve the purpose of use.

2. Provision to Third Parties

In principle, the Group does not provide personal information to third parties without the consent of the customer. However, in the following cases, the Group may provide customers' personal information without obtaining their consent to the extent that it does not violate related laws and regulations.

(1)When required by law
(2)When necessary for the protection of human life, human health, or property and it is difficult to obtain the customer's consent
(3)When especially necessary for improving public health or promoting the sound growth of children and it is difficult to obtain the customer's consent
(4)When it is necessary to cooperate with a national agency, a local government, or an individual or entity entrusted by either a national agency or local government to execute affairs prescribed by law, and obtaining the customer's consent is likely to impede the execution of those affairs
(5)In the event of a merger, company split, business transfer, or any other reason for the succession of business operations

3. Entrustment

The Group may entrust the handling of personal information to third parties to the extent necessary to achieve the purposes of use described above.

4. Security Control Measures

The Group has security control measures in place from organizational, personnel, physical, and technical perspectives when handling personal information. In principle, personal information acquired by the Group is stored within the country in which each company is located. However, if personal information is stored in a country different from where the company is located, the Group will implement appropriate security measures based on an assessment of that country’s data protection laws and regulations.
For details on security control measures, please contact the "Contact for Disclosure, etc. and Personal Information Inquiries" below.

5. Use of Access Information

1. Use of Advertising Distribution Service
The Group uses an advertising distribution service provided by a third party. Such third parties may acquire and use access information such as users' browsing history on the Group’s website by means of cookies, etc. Access information acquired by such third parties is handled in accordance with the privacy policy of such third parties.

Customers can opt out of the use of access information acquired through third-party advertising delivery services for advertising distribution.
Google ad-serving settings:
https://adssettings.google.com/authenticated
Microsoft ad-serving settings:
https://account.microsoft.com/privacy/ad-settings/signedout
Yahoo! ad opt-out page:
https://btoptout.yahoo.co.jp/optout/index.html

2. Use in Analysis Services
(1) AD EBiS
The Group’s website uses AD EBiS to analyze customer requests, advertising effectiveness, etc. AD EBiS uses cookies to collect access information such as customer browsing history. The Group may use the access information collected by AD EBiS in conjunction with the content of inquiries made by customers on the Group’s website. In addition, ILGRUM, Inc., which provides AD EBiS, may use the access information collected for the purpose of improving its services.

Please refer to the following page for information on the collection and use of access information by AD EBiS and how to opt-out.
AD EBiS "Frequently Asked Questions (FAQ)":
https://www.ebis.ne.jp/privacy/faq/
Opt-out settings:
https://hotei.ebis.ne.jp/policy/optout.php

(2) Google Analytics
The Group’s website uses Google Analytics as a tool to analyze customer traffic in order to improve the website. Google Analytics uses cookies to collect logs that do not contain personally identifiable information.

For more information about the collection and use of access information by Google Analytics and how you can opt-out, please see the following pages.
Google's Use of Data When Users Use Google Partner Sites and Apps:
https://policies.google.com/technologies/partner-sites
GoogleAnalytics Opt-Out Add-On:
https://tools.google.com/dlpage/gaoptout

(3) Microsoft Clarity
The Group’s website uses Microsoft Clarity as a tool to analyze customer traffic in order to improve the website. Microsoft Clarity uses cookies to collect logs that do not contain personally identifiable information.

For more information on the collection and use of access information by Microsoft Clarity, please see the following pages
Microsoft Clarity Terms of Use:
https://clarity.microsoft.com/terms
Microsoft Privacy Statement:
https://privacy.microsoft.com/en-us/privacystatement

6. Disclosure, Correction, etc., Complaints, and Consultation

The Group handles requests concerning personal information, including 1) disclosure (including records of third-party provision), 2) notification of purpose of use, 3) correction, 4) addition, 5) deletion, and 6) suspension of use or suspension of third-party provision (hereinafter referred to as "disclosure, etc."). Please refer to section 7, "Procedures for Requesting Disclosure, etc." for the process details.

7. Procedures for Requesting Disclosure, etc.

If you wish to request disclosure, etc. of the personal information held by the Group, please follow the procedure below:

（1）Disclosure, etc. Contact Point and Personal Information Consultation Contact Point
For requests for disclosure, etc., please attach the required documents to the prescribed request form and send them by mail. When sending the request form to the Group by mail, please use a method that allows delivery confirmation, such as registered mail. Additionally, the Group would appreciate it if you could write "Personal Information Request Form Enclosed" in red on the envelope.

  WeWork Midosuji Frontier, 1-13-22
  Sonezakishinchi, Kita-ku, Osaka-shi, Osaka 530-0002, Japan

  To: Information Security Manager, Corporate Headquarters, Micoworks,Inc.

（2）Format and Method to Submit for Disclosure, etc.
If you wish to make a request for disclosure, etc., please contact the email address provided at the end of this page. The Group will then provide you with the necessary form. After receiving the form, please fill in all the required items. If you are requesting on your own behalf, please enclose the documents listed in the next section (a) and send them to the contact point mentioned above by mail. If you are authorizing a representative, please enclose the request form for disclosure, the power of attorney, and the documents listed in the next section (a), (b), and (c), and send them to the contact point mentioned above by mail.

（3）Method of Verifying the Identity of the Person or Their Agent

a) Documents to verify the identity of the person
One copy of the person's driver's license, passport, basic resident register card, resident card or special permanent resident certificate, my number card (only the front page with a photograph), or other official identification that can verify the person's identity

b) Documents to verify the identity of the agent
One copy of the agent's driver's license, passport, basic resident register card, residence card or special permanent resident certificate, my number card (only the front page with photo), or any other official identification that can verify the agent's identity.

c) A copy of family register, certificate of registered matters, or other official document that confirms the right of legal representation. Certificate of registered matters regarding guardianship registration, etc., and other official documents that can confirm the right of legal representation

（4）Fees
Only in the case of a request for notification of purpose of use or disclosure, a fee of 3,000 yen (including tax) per request will be charged as an administrative fee for reply and postage costs. Please enclose a fixed-sum money order for 3,000 yen with the documents submitted. Please note that you are responsible for the cost of purchasing the money order and postage for the "Request for Disclosure of Personal Information, etc." and other documents. If the fee is insufficient, or if the fee is not enclosed, the Group will contact you to that effect and assume that you have not made a request for disclosure. The same will apply if the Group is unable to contact you due to incomplete information on the "Request for Disclosure of Personal Information, etc."

8. Revision

1. The Group will revise the handling of personal information at it’s discretion. However, if the Personal Information Protection Law or other laws and regulations stipulate the procedures necessary for such revisions, the Group shall make such revisions in accordance with such laws and regulations.

2. When the Group changes its policy regarding the handling of its customers’ personal information, the Group will inform customers of the effective date and content of the revised policy by the following methods.
(1)Posting on the Group's website
(2)Notification to customers
(3)Other appropriate methods

Enacted December 10, 2018
Revised April 1, 2022
Revised December 1, 2022
Revised February 1, 2023
Revised May 8, 2023
Revised June 30, 2023
Revised July 20, 2023
Revised June 4, 2024
Revised April 1, 2025

Personal Information Protection Manager: Information Security Manager, Corporate Headquarters
Micoworks, Inc.
E-mail：privacy@micoworks.jp