チケットのことならチケットぴあチケットぴあ


Privacy Policy for EEA Residents

This privacy policy (this "Policy") explains how PIA ("we", "us" and "our") collect through this website (the "Website") the personal data of our customers ("you" and "your") who reside in the European Economic Area (the "EEA") and use such personal data. This Policy does not apply to any other websites operated by any of us, and those other websites carry their own respective privacy policies that you should consult when you use those websites.

This Policy does not form any contractual relationship between you and us, and we might amend it from time to time.


1. WHO IS USING YOUR PERSONAL DATA

The Website is controlled and operated from Japan by PIA Corporation ("PIA") whose registered address is Shibuya First Tower, 1-2-20 Higashi, Shibuya-ku, Tokyo 150-0011, JAPAN. For the purposes of the EU General Data Protection Regulation 2016/679 (the "GDPR"), PIA is data controller for the personal data processed in the manner set out in this Policy. This means that we determine the purposes and means of processing your personal data.


2. LAWFUL PROCESSING
  1. We process your personal data based on the legal bases provided for in the GDPR (Articles 6 and 7).
  2. We process your personal data of a sensitive nature, including your religious beliefs and health status, in accordance with special criteria provided for in the GDPR (Articles 9 and 10).
  3. If the provision of personal data is a statutory or contractual requirement or a requirement for entry into a contract, we will notify you separately regarding whether you are obligated to provide personal data and the possible consequences of failure to provide such data.

3. WHAT PERSONAL DATA WE COLLECT ABOUT YOU
  1. We process the following types of personal data about you:
    1. your name; your contact details, such as your email address and telephone number; your gender; your date of birth; your country of residence; and your payment details (such as your credit card number);
    2. details of your access to our systems and the Website; and
    3. your messages, feedback or contributions to surveys and questionnaires.
  2. It might be mandatory for you to provide us with your personal data in order to enable us to provide you with our services or to comply with our legal and regulatory obligations. If you fail to provide your personal data when requested, we might not be able to provide our services to you.
  3. We take necessary measures to maintain the accuracy and completeness of your personal data that we store and to ensure all of your personal data is up to date. However, please promptly contact us if there are any changes to your personal data or if you become aware that we have inaccurate personal data relating to you. We will not be liable for any damage arising from any inaccurate, inauthentic, deficient or incomplete personal data that you provide to us.

4. HOW WE COLLECT PERSONAL DATA

We collect your personal data from the information you submit. Personal data is typically collected when you purchase our services.


5. HOW WE USE PERSONAL DATA

We process your personal data set out in 3.1 above for the following purposes because it is necessary to do so in order to pursue our legitimate interests:

  1. to provide you with requested services;
  2. to process your payments;
  3. to respond to your messages or posts to us;
  4. to provide you with information about our services;
  5. to check your identity in order to provide you with requested services;
  6. to manage, develop and improve our services and websites;
  7. for fraud and crime prevention and detection purposes;
  8. for administrative purposes in relation to the security of and access to the Website;
  9. to comply with our legal and regulatory obligations; and
  10. to comply with court orders and exercise or defend our legal rights.


6. INTERNATIONAL TRANSFERS OF PERSONAL DATA

This Website is controlled and operated from Japan and the file containing your personal data will be stored in our servers or those of our IT service providers. Those servers are located in Japan. Although the European Commission has not confirmed that Japanese law offers a level of protection equivalent to that offered to personal data within the EEA, we will process your personal data with a level of protection equivalent to that offered within the EEA and recognise your exercise of rights in your personal data that you would hold under the GDPR.
If we transfer your personal data to our IT service providers outside the EEA, we will ensure that all such international transfers are made subject to appropriate or suitable safeguards as required by the GDPR. You can obtain copies of the relevant safeguard documents by making a request in the manner set out below.


7. WHEN WE MAY DISCLOSE YOUR PERSONAL DATA

We do not and will not sell, rent out or trade your personal data. We will disclose your personal data only to recipients who are the subject of prior consent we obtain from you in relation to disclosure, and the following recipients:

  1. to third parties who process your personal data on our behalf (such as our IT service providers);
  2. to event organizers and the like who check your identity at entrance points into the event venue;
  3. to event organisers and the like who inform you of the cancellation or postponement of events or any other changes or the like to events and refund you in such circumstances;
  4. to any third party to whom we assign or transfer any of our rights or obligations;
  5. to any prospective buyer if we sell any part of our business or assets; and
  6. to any government, regulatory agency, enforcement or exchange body or court (if we are required to do so by applicable law or regulation or at their request).


8. HOW WE PROTECT YOUR PERSONAL DATA

We are committed to safeguarding and protecting your personal data and will introduce and maintain appropriate technical and organizational measures to ensure a level of security appropriate to protect your personal data from accidental or unauthorized destruction, loss, modification, disclosure or access.


9. YOUR RIGHTS IN RELATION TO THE PERSONAL DATA WE COLLECT
  1. Under certain circumstances, you have the following rights in relation to our processing of your personal data:
    1. the right to access;
    2. the right to rectify;
    3. the right to erase;
    4. the right to restrict processing;
    5. the right to suspend processing; and
    6. rights related to data portability.
  2. If we process your personal data using your consent as a legal basis for doing so, you will have the right to withdraw your consent at any time by a method separately designated by us at the time we seek your consent. However, your withdrawal of consent will not affect the legality of processing conducted based on consent we had obtained from you before you withdrew consent.
  3. We do not conduct any solely data-based, automated decision-making that produces any legal or similar material effect on you.
  4. If you wish to exercise any of your rights, please contact us using the contact methods provided below. We might request that you prove your identity in order for us to comply with our security obligations and to prevent unauthorized disclosure of data.

10. HOW LONG WE WILL HOLD YOUR PERSONAL DATA FOR

We will delete your personal data 30 days after the end of the event you bought a ticket for on the Website.


11. DIRECT MARKETING

We will not contact you for marketing purposes by email, phone or text message unless you have given your prior consent.


12. HOW WE UPDATE OR CHANGE THIS POLICY

We might change or update this Policy in order to maintain our compliance with applicable laws and regulations or following an update to our internal rules. We will make such changes or updates by updating this Policy. You will not necessarily be directly notified of such a change. Therefore, please ensure that you regularly check this Policy so you are fully aware of any changes or updates.


13. HOW YOU CAN CONTACT US

If you have any queries about the contents of this Policy or your personal data that we store or wish to make a request in relation to your personal data, please contact [the data protection manager] or the EU representative using the details set out below:

Contact details of [the data protection manager]
Email : question_i@pia.co.jp
Post : PIA Corporation, Shibuya First Tower, 1-2-20 Higashi, Shibuya-ku, Tokyo 150-0011, JAPAN

Contact details of the EU representative [DataRep]
PIA Corporation, which processes the personal data of individuals in the European Union, in the role of ‘data controller’, has appointed DataRep as its Data Protection Representative for the purposes of GDPR. If you want to raise a question to PIA Corporation., or otherwise exercise your rights in respect of your personal data, you may do so by:
・sending an email to DataRep at datarequest@datarep.comquoting in the subject line,
・contacting us on our online webform at www.datarep.com/data-request, or
・mailing your inquiry to DataRep at the Cube, Monahan Road, Cork, T12 H1XY, Republic of Ireland
PLEASE NOTE: when mailing inquiries, it is ESSENTIAL that you mark your letters for ‘DataRep’ and not ‘PIA Corporation.’, or your inquiry may not reach us. Please refer clearly to PIA Corporation in your correspondence. On receiving your correspondence, PIA Corporation is likely to request evidence of your identity, to ensure your personal data and information connected with it is not provided to anyone other than you.


14. HOW TO LODGE A COMPLAINT TO THE DATA PROTECTION AUTHORITY
We will endeavor to resolve complaints about our use of your personal data. If you believe that we have violated your data protection rights, please contact us using the contact details set out above. If you are not satisfied with the response, you are entitled to lodge a complaint with a competent data protection authority of each EEA member state.


Date Updated: May 31, 2021


Copyright © PIA Corporation. All Rights Reserved.