Privacy Policy

Komura Biyori Co., Ltd. (the “Company”) prepares this Privacy Policy so you can use our platform with confidence. Please read it carefully to understand your rights.

Last updated: January 2024

Article 1 · Scope

This Privacy Policy of the Komura Biyori official website (the “Website”) describes how the Company handles personal data collected when you use the Website. It does not apply to other websites. Without member consent, the Company will never share member personal data with any third party unrelated to the Website’s services.

Article 2 · Personal Data Collection

When you register an account, browse pages, or participate in activities, the Company collects personal identifiers. We may also obtain personal data from third-party suppliers we partner with. Registration requires your name, phone number and email. Once you successfully register and sign in to our services, the Company has access to your personal data.

Purposes for collecting personal data:

To provide e-commerce platform services, customer service, technical maintenance, fulfilment of statutory or contractual obligations, protection of the rights of parties and consumers, and marketing. When you browse the Website, our system records information including your name, email, address, IP address, session times, and browsing/clicking history. If you buy or sell items on the Website, we collect transactional behaviour data — used for traffic and behavioural analysis without identifying any individual.

Article 3 · Duration, Region, Recipients and Methods of Use

Member personal data collected by the Company is retained permanently, used internally only, and protected by a perpetual duty of confidentiality. The data is used solely for lawful processing aligned with the original collection purpose.

Unless required otherwise by law or upon your deletion request, your personal data is retained and used indefinitely. This permanent retention serves to:

1. Maintain the ongoing relationship between you and the Company.
2. Ensure we can offer quality customer service and relevant product recommendations.
3. Meet the Company’s legal and compliance obligations.

The Company will never share your personal data with third parties except in the following cases:

• Where necessary to provide services or fulfil contractual obligations;
• Where you have authorised us to provide the requested product or service;
• Where you have consented to the sharing of your personal data;
• Pursuant to a judicial or regulatory order or requirement.

Personal data is not deemed confidential in the following cases:

1. Already public at the time of disclosure, or made public after disclosure through no fault of the recipient.
2. The recipient can demonstrate prior lawful possession or knowledge before disclosure.
3. Obtained or known, before or after disclosure, through legitimate means from a third party authorised to disclose and not bound by confidentiality.
4. The other party agrees in writing that the information is non-confidential — treated as confidential until that written consent is received.
5. The Company may, within necessary scope, disclose confidential information received from members to its directors, supervisors, employees, affiliates, attorneys statutorily bound by confidentiality, and third parties to whom the member has consented in writing — provided those recipients are bound by equivalent confidentiality obligations.

Article 4 · Your Rights and How to Exercise Them

Under the Personal Data Protection Act, you may exercise the following rights with respect to your personal data:

1. Inquire about or request access to your data.
2. Request a copy.
3. Request supplementation or correction.
4. Request that collection, processing or use be ceased.
5. Request deletion.

Article 5 · Third-Party Service Providers

The Company partners with third-party service providers to broaden the range of services available. For example, third-party payment, credit card acquiring and logistics services on the Website are operated by external providers, who may serve our members under the Company’s instruction. In specific cases, third-party providers may collect personal data directly from you, and you have the right to decide whether to share it.

Article 6 · Minors

Users under the age of 20 must obtain consent from a legal guardian before using the services. The Website’s Terms of Service and Storefront Service Terms also describe member identity verification. The Company does not permit minors to register without guardian consent, and does not intentionally collect personal data from children.

Article 7 · Cookies

The Website uses cookies to deliver the services members rely on. You may adjust your browser’s cookie settings at any time; if you choose to reject all cookies, some Website features may become unavailable.

Article 8 · Right to Amend the Privacy Policy

By using the services provided by the Website, you are deemed to have read and agreed to this Privacy Policy. The Company reserves the right to amend this Privacy Policy at any time; updated terms will be published on the official website — please check back regularly. If you do not agree to this Privacy Policy, please stop using the Website immediately.