Personal Information Protection in Hitachi Construction Machinery Co., Ltd.
- Personal Information Protection Policy
- Notice regarding Handling of Personal Information
- Website Privacy Policy
- Inquiry
Personal Information Protection Policy
As of April 1st, 2025
Hitachi Construction Machinery Co., Ltd. (hereinafter referred to as “We”, “Our” or “Us”), as a global supplier offering total solutions, recognize that protecting personal information is one of our most important management priorities, and we have established the following personal information protection policy to ensure the appropriate protection of personal data.
1. Collection Limitation Principle
We collect personal data fairly and in accordance with the conditions required by applicable law, such as obtaining the consent of the data subject. We process personal data only to the minimum extent and for the minimum duration necessary for the purposes of such processing, which shall be explained at the time of collection, unless permitted by law.
2. Data Quality Principle
We limit personal data collected to be relevant to the purpose of the use and limited to the extent necessary. Also, We strive to ensure that the personal data must be accurate, complete, and up to date.
3. Purpose Specification Principle
We specify the purpose of collecting personal data prior to collection. Also, We do not use personal data for purposes other than those specified at the time of collection. We clarify and explain the purpose of personal data collection to data subjects in an appropriate manner in plain language.
4. Use Limitation Principle
We ensure that the collected personal data is used only for the purpose explained at the time of collection, unless permitted by law. If We use such data for purposes other than those explained at the time of collection, We ensure that We have the legal basis for doing so, either by obtaining the consent from data subjects or by verifying that such processing is permitted under applicable laws.
5. Security Safeguards Principle
We ensure to assess the risks associated with the processing of personal data and protect personal data from loss, destruction, or unauthorized, unlawful, or improper use, modification, or disclosure by implementing reasonable security measures proportionate to the risks.
6. Openness Principle
We confirm the policy for collecting and using personal data and clearly inform data subjects of the purpose, the responsible person (specifically, company name) for processing personal data, and the recipients of the disclosure.
7. Individual Participation Principle
We ensure that the data subject is able to confirm the location and content of their personal data, as well as ensuring their rights to access, correct, delete, or request the suspension of the use of their personal data.
8. Accountability Principle
When processing personal data, We recognize that We, as a company, are responsible for demonstrating compliance with the above principles, and will inform its directors and employees of this responsibility.
Notice regarding Handling of Personal Information
As of April 1st, 2025
Hitachi Construction Machinery Co., Ltd. (hereinafter referred to as "We, “Our”, or “Us") aim to contribute to creating a prosperous society by providing innovative products and services, including manufacturing, sales, and after-sales service of construction and mining machineries (hereinafter referred to as “Machinery”), and to be a good corporate citizen trusted by all stakeholders.
Various countries and regions around the world are actively discussing regulations regarding the protection of personal information and privacy, and there is a trend toward further tightening. We recognize that protecting personal information is one of Our top management priorities, and strives to ensure the proper protection of personal information entrusted to Us by individuals in each country and region where We conduct business.
We establish the “Personal Information Protection Policy” and rules, and build a management structure regarding the protection of your personal information. We also issue the following notice titled "Notice regarding Handling of Personal Information" (hereinafter referred to as "Notice") and communicate it to Our executives and employees to ensure the proper protection of personal information.
Scope
The contents outlined in this Notice are subject to “Act on the Protection of Personal Information” of Japan (hereinafter referred to as “APPI”), and this Notice defines how We handle personal information that We process.
In this notice, We refer all individuals who are subject to APPI and whose personal information are processed by Us as “You”, including customers who use Our products and services, business partners, shareholders, attendees of events hosted by Us, and individuals seeking to join Our company. APPI also applies to the personal information of foreigners processed by Us, regardless of their place of residence or nationality.
Individuals residing in the following countries or regions are requested to refer to the respective privacy policy notices.
- European Economic Area (EEA) and UK: "Notice regarding Handling of Personal Data for EEA and United Kingdom" (at the bottom of this page)
Handling of Personal Information for Each Product, Service, and Business
In addition to this Notice, We may issue individual privacy policies or privacy notices (hereinafter referred to as “Individual Privacy Policies”) to provide detailed information about how personal information is handled in each service or initiative.
If there is any discrepancy between this Notice and Individual Privacy Policies, Individual Privacy Policies will take precedence.
Compliance with Laws and Regulations
We comply with APPI and other related laws, regulations, and guidelines when handling personal information.
In addition, We establish and enforce Our own rules regarding personal information protection that adhere to these laws and other applicable regulations.
Personal Information to be Obtained
We define personal information as any information that we obtain and process, through which a specific individual can be identified, either by a single piece of information or a combination of two or more pieces of information, including but not limited to individual’s name, date of birth, age, gender, address, telephone number, email address, name of workplace, address of workplace, telephone number of workplace, bank account number, various numbers or character strings assigned to an individual, information about Our products and services, information about web pages accessed, complaints, consultations, inquiries, and other information related to an individual obtained in connection with Our business.
In addition, “You” refers to the individual who can be identified from personal information.
Based on this Notice, We protect and manage personal information with the utmost care and effort.
We will never obtain nor use sensitive information, such as race, creed, social status, medical history, criminal history, or the fact of having suffered damage by a crime, except where the law requires it or You have given consent.
Purpose of Use
We will use personal information only to the extent necessary to achieve the following purposes.
Scope |
Purpose of use |
All individuals involved in Our business activities |
|
Customers (including potential customers) |
|
Business Partners |
|
Shareholders |
|
Participants in events hosted by Our company |
|
Individuals who seek to join Our company. |
|
Collection, Use, and Provision of Personal Information
Considering that We hold personal information in the course of Our business activities, We have established a management structure for protecting personal information appropriate to the actual circumstances of each business, and will handle the collection, use, and provision of personal information appropriately in accordance with prescribed rules.
Recipients
We will not disclose or provide personal data to third parties except in the following cases:
- When You have given prior consent
- When You have given consent
- When required by APPI
- When conducting joint use
We may provide all or part of the personal data to the following companies to the extent necessary for the purposes of use described above.
- Affiliates of the Company (companies in which We hold 20% or more of the total shares of the company)
- Authorized dealers of Us or Our affiliates
- Outsourcing partners
- Business partners
- Regulatory authorities of both Japan and overseas
- Expert advisors
Joint Use
We may share your information as follows. The joint use of information for each service will be governed by the terms and conditions of each service.
- Personal information to be shared
Personal information described in "Personal Information to be Obtained"
- Scope of Joint use
Affiliates of the Company (companies in which We hold 20% or more of the total shares of the company)
- Purpose of Use
Within the scope described in "Purpose of Use"
- Person Responsible for Management
Representative executive officer of Hitachi Construction Machinery Co.,Ltd. described in "Company Outline"
Cross-border Transfer of Personal Information
We may transfer personal data to countries or regions that do not have personal data protection laws or regulations equivalent to those in Japan, as We conduct business activities globally.
We will take appropriate measures in accordance with the provisions of APPI, when transferring personal data overseas.
Retention Period of Personal Information
We will retain your personal information only as long as necessary to fulfill the purposes of use (including the purposes of satisfying legal or accounting requirements).
When deciding the appropriate retention period for personal information, We consider several factors such as the amount, nature, and sensitivity of the personal information, the potential risk of unauthorized use or disclosure, purposes of use, whether We can achieve those purposes through other means, and the applicable legal requirements.
In some cases, We may anonymize your personal information for research or statistical analysis to ensure that it can no longer be linked to You. In such cases, We may use anonymized information for an unlimited period of time without notifying You.
Provision of Personal Information by You
In principle, the provision of personal information is based solely on your will, and You are under no obligation to provide your personal information to Us.
However, if your personal information is not provided, this may result in certain disadvantages, such as being unable to access the various services We offers, or experiencing malfunctions in some features of Our systems.
Security Control Measures
We take necessary and appropriate measures to prevent the loss, destruction, alteration and leakage of personal information and to ensure its security. The key measures are as follows:
- Institutional Security Control Measures
- We establish the Information Security Committee as a company-wide governing organization in order to manage personal data and information security across the company. For details, please refer to Information Security and Personal Information Protection page.
- We appoint a person responsible for managing personal information (Information Assets Manager) and establish a management structure to identify all personal information handled by Our company and to respond to and manage cases of personal data leakage, loss, or damage of personal information.
- We will regularly review the operational status of information security and personal information protection.
- Human Security Control Measures
- We regularly conduct employees training on personal information protection and information security according to their roles and responsibilities.
- We require employees to sign and submit a confidentiality agreement when joining the company and enforce strict compliance with regulations regarding the protection of confidential information during their employment. When employees leave the company, We also require them to sign and submit a confidentiality agreement to ensure the continued protection of any confidential information they became aware of during their tenure with us.
- Physical Security Control Measures
- Entrances and exits to information security areas are limited and, as a general rule, are kept locked at all times. In addition, records of entry and exit are kept. Furthermore, Furthermore, We have established entry permission standards for the area and restrict access to unauthorized personnel.
- We implement thorough theft prevention measures for devices that handle personal data and manage such data by encrypting it or applying equivalent confidentiality safeguards.
- When disposing of or reusing documents, information storage media, or information devices that contain confidential data, We ensure that all stored information assets are completely erased to make them indecipherable or unreadable.
- Technological Security Control Measures
- We properly manage information devices and information system accounts, and restrict access to information systems that handle personal data. (e.g., minimizing privileged accounts, requiring managerial approval for issuing privileged accounts, conducting periodic reviews of general and privileged accounts, etc.)
- In order to prevent unauthorized access from outside and information leakage, We implement appropriate security measures for IT devices, such as PCs, servers, and networks, used by Us. In addition, We continuously monitors for signs of cyberattacks, unauthorized use of information systems, and potential security flaws or vulnerabilities.
- Understanding External Environment
- In order to prevent unauthorized access from outside and information leakage, We collect system vulnerability information in real time.
Inquiries
Any inquiries or complaints regarding this Notice will be handled by the contact point listed below. We will respond sincerely and promptly to requests from You regarding disclosure, etc. of personal information (notification of purpose of use, disclosure, correction, addition or deletion of content, suspension of use or deletion, suspension of provision to third parties, etc.). In addition, if You have any opinions, questions, complaints or other inquiries regarding Our handling of personal information, please contact the following contact point using the inquiry form.
We will accept any inquiries or complaints regarding this Notice at the contact points listed below. We will respond sincerely and promptly to requests from You regarding the handling of your personal data, including but not limited to, notification of the purpose of use, disclosure, correction, addition, deletion of content, suspension of use, deletion, or suspension of provision to third parties. For opinions and questions, please contact the following contact point using the inquiry form.
To: The person in charge of personal information management
Personal information consultation desk
Hitachi Construction Machinery Co., Ltd.
Ueno East Tower 2-16-1 Higashiueno Taito-ku, Tokyo 110-0015
(Business hours: 9:00am to 5:30pm (excluding weekends, public holidays, year-end and New Year holidays, Golden Week, summer holidays, and other holidays designated by Our company.))
Special Notes
- We may revise this Notice posted on this page to enhance personal information protection and comply with amendments to laws, ministerial ordinances, or other norms and regulations. We kindly ask that You check this page regularly.
- The contents of this page shall apply from the date of posting (including the date of update).
Notice regarding Handling of Personal Data for EEA and United Kingdom
Hitachi Construction Machinery Co., Ltd. (hereinafter referred to as "We, “Our”, or “Us") aim to contribute to creating a prosperous society by providing innovative products and services, including manufacturing, sales, and after-sales service of construction and mining machineries (hereinafter referred as “machinery”), and to be a good corporate citizen trusted by all stakeholders.
Various countries and regions around the world are actively discussing regulations regarding the protection of personal data and privacy, and there is a trend toward further tightening. We recognize that protecting personal data is one of Our top management priorities, and strives to ensure the proper protection of personal data entrusted to Us by individuals in each country and region where We conduct business.
We establish the “Personal Information Protection Policy” (link) and rules, and build a management structure regarding the protection of your personal data. We also issue the following notice titled " Notice regarding Handling of Personal Data for EEA and United Kingdom" (hereinafter referred to as "Notice") and communicate it to Our executives and employees to ensure the proper protection of personal data.
Scope
The contents outlined in this Notice defines how We handle personal data about people in the European Economic Area (EEA) and the UK that We process.
In this Notice, We refer all individuals whose personal data are processed by Us as “You”, including customers who use Our products and services, business partners, shareholders, attendees of events hosted by Us, and individuals seeking to join Our company.
If there is any discrepancy between this Notice and “Notice regarding Handling of Personal Information”, this Notice will take precedence.
Handling of Personal Data for Each Product, Service, and Business
In addition to this Notice, We may issue individual privacy policies or privacy notices (hereinafter referred to as “Individual Privacy Policies”) to provide detailed information about how personal data is handled in each service or initiative.
If there is any discrepancy between this Notice and Individual Privacy Policies, Individual Privacy Policies will take precedence.
Compliance with Laws and Regulations
We comply with the applicable laws, regulations, and guidelines when handling personal data.
In addition, We establish and enforce Our own rules regarding personal data protection that adhere to these laws and other applicable regulations.
Definition of Personal Data
We process data regarding individuals as defined in GDPR/UK GDPR as "personal data". We collect information about individuals, including but not limited to individual’s name, date of birth, age, gender, address, telephone number, email address, name of workplace, address of workplace, telephone number of workplace, bank account number, various numbers or character strings assigned to an individual, information about Our products and services, information about web pages accessed, complaints, consultations, inquiries, and other information related to an individual obtained in connection with Our business, and use it for the following purposes.
Purpose and Legal Basis for Handling Personal Data
When We obtain your personal data, We will notify You of the purpose of use and handle it in accordance with GDPR/UK GDPR and other applicable laws and regulations.
We will use personal data only to the extent necessary to achieve the following purposes.
If We need to process your personal data for any other purpose, We will notify You individually.
We collect and use personal data based on the following legal bases:
- Your Consent
- Fulfilment of a contract or execution of procedures
- Compliance with legal obligations
- Protection of the vital interests of You or a third party
- Public interest or exercise of official authority
- Legitimate interests
The table below provides the expected purposes of use and the legal basis We rely on when using your personal data. In addition, when We rely on "legitimate interests" as the legal basis, We also specify the details of those interests.
Purpose/Action |
Legal basis (including legitimate interest) |
Sales activities, business meeting and signing a contract |
|
Running seminars and events etc. and delivery and/or sending of newsletters and e-mail newsletters for a campaign, new products and services |
|
Provision of services to users |
|
Provision of after-sales services
|
|
Response to inquiries |
|
Carrying out questionnaires, surveys and statistics, etc. |
|
Analysis to improve products and services |
|
Executing a contract |
|
Performance of duties under laws, regulations and norms other than the EU legislations and domestic laws of the member states of EEA and the UK, including, in the case of responding to a court order to submit documents, responding to questions and examinations conducted by officers of tax authorities and answering to investigation-related inquiries |
|
Implementation of credit decisions, receivables management and debt collection |
|
Recruitment activities |
|
Procurement of parts and raw materials and transactions with partner companies |
|
Distribution of behavioral targeting advertisement through ads distributors |
|
In order to grasp your interests and requests, analyze attribute information and behavior history acquired by us |
|
Collection, Use, and Provision of Personal Data
Considering that We hold personal data in the course of Our business activities, We have established a management structure for protecting personal data appropriate to the actual circumstances of each business, and will handle the collection, use, and provision of personal data appropriately in accordance with prescribed rules.
Recipients
We will not disclose or provide personal data to third parties except in the following cases:
- When You have been notified in advance
- When You have given consent
- When disclosure/provision is made in accordance with GDPR/UK GDPR or other applicable laws and regulations
We may provide all or part of the personal data to the following companies to the extent necessary for the purposes of use described above.
- Affiliates of the Company (companies in which We hold 20% or more of the total shares of the company)
- Authorized dealers of Us or Our affiliates
- Outsourcing partners
- Business partners
- Regulatory authorities in and outside the EEA and the UK
- Expert advisors
Cross-border Transfer of Personal Data outside the EEA and UK
Our company and many of Our group companies are established in countries and regions outside the EEA and the UK. However, some of Our group companies are established within the EEA and the UK.
In order to achieve the purposes set out in the Purpose of Use, We take the protective measures required by GDPR/UK GDPR and may transfer personal data to third parties located outside the EEA or the UK. In such cases, We take protective measures stipulated in the “Act on the Protection of Personal Information” of Japan.
Please contact Us if You would like more information about the security measures We use when transferring personal data outside the EEA or the UK.
Retention Period of Personal Data
We will retain your personal data for as long as necessary to fulfill the purposes of use (including the purposes of satisfying legal or accounting requirements).
When deciding the appropriate retention period for personal data, We consider several factors such as the amount, nature, and sensitivity of the personal data, the potential risk of unauthorized use or disclosure, purposes of use, whether We can achieve those purposes through other means, and the applicable legal requirements.
In some cases, We may anonymize your personal data for research or statistical analysis to ensure that it can no longer be linked to You. In such cases, We may use anonymized information for an unlimited period of time without notifying You.
Provision of Personal Data by You
In principle, the provision of personal data is based solely on your will, and You are under no obligation to provide your personal data to Us.
However, if your personal data is not provided, this may result in certain disadvantages, such as being unable to access the various services We offer or experiencing malfunctions in some features of Our systems.
Security Control Measures
We take necessary and appropriate measures to prevent the loss, destruction, alteration and leakage of personal data and to ensure its security. The key measures are as follows:
- Institutional Security Control Measures
- We establish the Information Security Committee as a company-wide governing organization in order to manage personal data and information security across the company. For details, please refer to Information Security and Personal Information Protection page.
- We appoint a person responsible for managing personal data (Information Assets Manager) and establish a management structure to identify all personal data handled by Our company and to respond to and manage cases of personal data leakage, loss, or damage of personal data.
- We will regularly review the operational status of information security and personal data protection.
- Human Security Control Measures
- We regularly conduct employees training on personal data protection and information security according to their roles and responsibilities.
- We require employees to sign and submit a confidentiality agreement when joining the company and enforce strict compliance with regulations regarding the protection of confidential information during their employment. When employees leave the company, We also require them to sign and submit a confidentiality agreement to ensure the continued protection of any confidential information they became aware of during their tenure with us.
- Physical Security Control Measures
- Entrances and exits to information security areas are limited and, as a general rule, are kept locked at all times. In addition, records of entry and exit are kept. Furthermore, Furthermore, We have established entry permission standards for the area and restrict access to unauthorized personnel.
- We implement thorough theft prevention measures for devices that handle personal data and manage such data by encrypting it or applying equivalent confidentiality safeguards.
- When disposing of or reusing documents, information storage media, or information devices that contain confidential data, We ensure that all stored information assets are completely erased to make them indecipherable or unreadable.
- Technological Security Control Measures
- We properly manage information devices and information system accounts and restrict access to information systems that handle personal data. (e.g., minimizing privileged accounts, requiring managerial approval for issuing privileged accounts, conducting periodic reviews of general and privileged accounts, etc.)
- In order to prevent unauthorized access from outside and information leakage, We implement appropriate security measures for IT devices, such as PCs, servers, and networks, used by Us. In addition, We continuously monitors for signs of cyberattacks, unauthorized use of information systems, and potential security flaws or vulnerabilities.
- Understanding External Environment
- In order to prevent unauthorized access from outside and information leakage, We collect system vulnerability information in real time.
Your Rights regarding Your Personal Data
When We receive the following requests, We will respond honestly and appropriately in accordance with the provisions of GDPR/UK GDPR and other applicable laws and regulations, after confirming that the person making the request is the person in question or a person authorized by the person in question.
In certain cases, You have the following rights under Data Protection Laws in relation to your personal data:
- Right to request access to personal data
- Right to request correction of personal data
- Right to request erasure of personal data
- Right to request restriction of processing of personal data
- Right to object to processing of personal data
- Right to request transfer of personal data (data portability)
If You would like to exercise any of the rights listed above, please contact us.
You will not have to pay a fee to exercise any of the above rights, although We may not be able to comply with your request if it is clearly unfounded, repetitive or excessive.
We may ask You to provide specific information to confirm your identity. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may request further information from You in relation to the exercise of your rights to facilitate Our response.
We aim to respond to legitimate requests for your exercise of your rights within one month. However, if your request is particularly complex or You have exercised many rights, it may take Us longer than a month to respond. If this happens, We will notify You and update You on the situation.
You also have the right to lodge a complaint with a data protection supervisory authority at any time. Supervisory authorities can be viewed below:
Area | Supervisory Authorities |
EEA |
JUSTICE AND CONSUMERS ARTICLE 29 - National Data Protection Authorities |
UK |
Information Commissioner's Office |
However, We would like the opportunity to address your concerns before You contact the authorities, so please contact Us in the first instance.
Inquiries
We will accept any inquiries or complaints regarding this Notice at the contact points listed below. We will respond sincerely and promptly to requests from You regarding the handling of your personal data, including but not limited to, notification of the purpose of use, disclosure, correction, addition, deletion of content, suspension of use, deletion, or suspension of provision to third parties. For opinions and questions, please contact the following contact point using the inquiry form.
To: The person in charge of personal data management
Personal data consultation desk
Hitachi Construction Machinery Co., Ltd.
Ueno East Tower 2-16-1 Higashiueno Taito-ku, Tokyo 110-0015
(Business hours: 9:00am to 5:30pm (excluding weekends, public holidays, year-end and New Year holidays, Golden Week, summer holidays, and other holidays designated by Our company.))
Our representatives in EEA or the UK
Our representatives in EEA or the UK are as follows:
Area |
Company Name |
Address |
EEA |
Hitachi Construction Machinery (Europe) N.V. |
Sicilieweg 5, 1045 AT Amsterdam, The Netherlands |
UK |
Hitachi Construction Machinery (UK) Limited |
Monkton Business Park North, Hebburn, Tyne and Wear, NE31 2JZ, U.K. |
Special Notes
- We may revise this Notice posted on this page to enhance personal data protection and comply with amendments to laws, ministerial ordinances, or other norms and regulations. We kindly ask that You check this page regularly.
- The contents of this page will apply from the date of posting (including the date of update).
Website Privacy Policy
As of April 1st, 2025
This "Website Privacy Policy" (hereinafter "this Policy") explains how Hitachi Construction Machinery Co., Ltd. (hereinafter referred to as "We, “Our”, or “Us") handle personal information on Our website. If You are located in the European Economic Area (EEA) or the UK and are visiting Our website, and if You are another individual, please also read the notice at the bottom of this page.
Scope
The contents outlined in this Policy defines how We handle personal information obtained and held by Us through Our website. In this notice, We refer all individuals who access to Our website as “You”.
Personal Information to be Obtained and Purpose of Use
We will use the following personal information acquired through Our website only to the extent necessary to achieve the following purposes.
Information to be Obtained |
Purpose of Use |
Name and contact information of the person using the inquiry form |
|
Please note that We do not collect any personally identifiable information about visitors to Our website other than as described above.
For the processing of personal data of users who live in countries or areas where the laws and regulations require consent to the processing of personal data, the “lawful basis” is “consent”, and the method for obtaining consent is to press a button on the screen of the Website.
Recipients
We will not disclose or provide personal information to third parties except in the following cases:
- When You have been notified in advance
- When You have given consent
- When required by applicable law
We may provide all or part of the personal information to the following companies to the extent necessary for the purposes of use described above.
- Affiliates of the Company (companies in which We hold 20% or more of the total shares of the company)
- Authorized dealers of Us or Our affiliates
- Outsourcing partners
- Business partners
- Regulatory authorities of both Japan and overseas
- Expert advisors
Cross-border Transfer of Personal Data
We may transfer personal data to countries or regions that do not have personal data protection laws or regulations equivalent to those in the country or region in which You reside or are located, as We conducts business activities globally.
We will take appropriate measures in accordance with the provisions of applicable laws, when transferring personal data overseas.
Retention Period of Personal Information
We will retain your personal information only as long as necessary to fulfill the purposes of use (including the purposes of satisfying legal or accounting requirements).
We may anonymize your personal data when it is no longer necessary for the purposes listed in the Processing Purposes, except in the following cases:
- Where We, Our affiliates, or other third parties have a legitimate overriding interest in keeping your personal data identifiable.
- Where there is a legal or regulatory requirement or judicial or administrative order that restricts Us from anonymizing it.
Update of this Policy
We reserve the right to update this Policy at any time, and if We make significant updates, We will provide You with the new Policy. We may also inform You in other ways from time to time about Our processing of your personal data.
Use of Cookies and Web Beacons
We use cookies and web beacons (clear GIFs) in some parts of Our website to improve or modify the content of Our services and other features, aiming to better meet your needs.
For more information, please see Our "Cookie Notice".
Links to Third-Party Websites
Our website may contain links to third-party websites. Please note that We are not responsible for the handling of personal data on such websites. We recommend that You review the privacy policy of the linked websites before using them.
Security Control Measures
We adopt necessary and appropriate measures to prevent loss, destruction, manipulation and divulgence of personal data and to ensure the security of personal data. Only officers, employees or agents who need to know such information in order to accomplish the purpose will access to the personal data. For the particulars of its security measures, please contact the following consultation desk.
Inquiry
We will accept any inquiries or complaints regarding this Notice at the contact points listed below. We will respond sincerely and promptly to requests from You regarding the handling of your personal information, including but not limited to, notification of the purpose of use, disclosure, correction, addition, deletion of content, suspension of use, deletion, or suspension of provision to third parties. For opinions and questions, please contact the following contact point using the inquiry form.
To: The person in charge of personal data management
Personal data consultation desk
Hitachi Construction Machinery Co., Ltd.
Ueno East Tower 2-16-1 Higashiueno Taito-ku, Tokyo 110-0015
(Business hours: 9:00am to 5:30pm (excluding weekends, public holidays, year-end and New Year holidays, Golden Week, summer holidays, and other holidays designated by Our company.))
Special Notes
- We may revise this Policy posted on this page to enhance personal information protection and comply with amendments to laws, ministerial ordinances, or other norms and regulations. We kindly ask that You check this page regularly.
- The contents of this page shall apply from the date of posting (including the date of update).
Notice regarding handling of Personal Data for Individuals in the EEA and the United Kingdom
For website visitors and other individuals in the European Economic Area (EEA) or the UK:
We respect your privacy in the EEA and the UK and are committed to protecting your personal data in accordance with applicable laws and regulations. This notice explains how We manage personal data obtained through the use of Our website and informs You of your privacy rights.
About Us
Please refer to the "Contact" for information about Our contact information.
Our representatives in EEA or the UK are as follows:
Area |
Company Name |
Address |
EEA |
Hitachi Construction Machinery (Europe) N.V. |
Sicilieweg 5, 1045 AT Amsterdam, The Netherlands |
UK |
Hitachi Construction Machinery (UK) Limited |
Monkton Business Park North, Hebburn, Tyne and Wear, NE31 2JZ, U.K. |
Purpose and Legal Basis for Handling Personal Data
The table below provides the expected purposes of use and the legal basis We rely on when using your personal data. In addition, when We rely on "legitimate interests" as the legal basis, We also specify the details of those interests.
Purpose/Action |
Legal basis (including legitimate interest) |
Response to inquiries |
|
Categories of Recipients of Personal Data
We may share your personal data with the third parties specified in the “Recipients” for the purposes described in the "Purpose and Legal Basis for Handling Personal Data". In such cases, We require these third parties to ensure the security of your personal data and to handle it in compliance with applicable laws and regulations.
Cross-border Transfer of Personal Data outside the EEA and UK
Our company and many of Our group companies are established in countries and regions outside the EEA and the UK. However, some of Our group companies are established within the EEA and the UK.
In order to achieve the purposes set out in “Purpose and Legal Basis for Handling Personal Data”, We take the protective measures required by GDPR/UK GDPR and may transfer personal data to third parties located outside the EEA or the UK. In such cases, We take protective measures stipulated in the “Act on the Protection of Personal Information” of Japan.
Please contact Us if You would like more information about the security measures We use when transferring personal data outside the EEA or the UK.
Legal Rights
You have the right to request copies of your personal data, request the modification, erasure or restriction of processing of the personal data You provide, and obtain your personal data in a structured, machine-readable format. In some circumstances, You may also have the right to object to the processing of your personal data.
These rights may be limited in cases where, for example, fulfilling your request would reveal personal data of others, or when You request Us to erase information that We are required by law to retain or that We have a compelling legitimate interest to retain.
If You believe that the issue has not been resolved, You have the right to file a complaint with the data protection authority in your place of residence, your place of work, or the location where the violation occurred.
Cases Where Personal Data Is Not Provided
If You fail to provide accurate personal data when requested by Us, despite it being necessary, We may not be able to provide You with the information or services You require (for example, responding to your inquiry).
Inquiry
We will accept any inquiries or complaints regarding our personal data protection at the contact points listed below. We will respond sincerely and promptly to requests from You regarding the handling of your personal information, including but not limited to, notification of the purpose of use, disclosure, correction, addition, deletion of content, suspension of use, deletion, or suspension of provision to third parties. For opinions and questions, please contact the following contact point using the inquiry form.
To: The person in charge of personal data management
Personal data consultation desk
Hitachi Construction Machinery Co., Ltd.
Ueno East Tower 2-16-1 Higashiueno Taito-ku, Tokyo 110-0015
(Business hours: 9:00am to 5:30pm (excluding weekends, public holidays, year-end and New Year holidays, Golden Week, summer holidays, and other holidays designated by Our company.))