Group Personal Information Protection Policy

Seven & i Holdings Co., Ltd. and its domestic subsidiaries (hereinafter “the Group”) are guided by a corporate creed to be a company of integrity, trusted by customers, business partners, shareholders, local communities, and employees.

In light of this, the Group considers the proper handling of personal information acquired during business activities to be one of the most significant social responsibilities. This extends beyond legal compliance to include earning the trust of all stakeholders.

In order to fulfill this responsibility, "Group Personal Information Protection Policy" has been established for the Group detailed as follows. The Group is committed to embedding this policy through education and training for all officers and employees, thereby ensuring the appropriate handling of all personal information it acquires.

Shigeki Kimura
Representative Director & Vice President
Seven & i Holdings Co., Ltd.
8-8 Nibancho, Chiyoda-ku, Tokyo

  1. 1Compliance
    The Group will comply with all applicable domestic and international laws and regulations regarding personal information protection. This includes adherence to guidelines established by the Personal Information Protection Commission and other relevant administrative agencies, both domestically and internationally.
  2. 2Acquisition and Utilization of Personal Information
    The Group will acquire personal information through lawful and fair means. Moreover, the Group will appropriately notify or disclose the purpose for which personal information will be used, and process it only to the extent necessary to fulfill that purpose.
  3. 3Security Control Measures
    The Group will implement appropriate organizational, human, physical and technical security measures to properly manage personal information and to prevent and remediate its leakage, loss or damage.
    When outsourcing personal information handling, the Group will select vendors that meet stringent personal information protection requirements. The Group will contractually stipulate the required protection levels, conduct timely monitoring of their handling practices, and supervise them appropriately. Moreover, should the Group or a vendor handle personal information outside of Japan, the Group will take necessary and appropriate security measures after understanding the personal information protection regulations in that specific country.
  4. 4Provision to or Joint Utilization with Third Parties
    The Group will not provide acquired personal information to third parties without the information subject’s consent, unless otherwise stipulated by laws and regulations. Moreover, when providing personal information to a third party, the Group will create and retain records of the legally required details pertaining to such provision, unless otherwise stipulated by laws and regulations. Similarly, when acquiring personal information from a third party, the Group will verify compliance with legally required details for acquisition and create and retain the corresponding records.
    When sharing customer personal information, the Group will notify the information subject in advance or publicly disclose the purpose of sharing the information and other legally required details.
  5. 5Disclosure, Correction and Suspension of Utilization
    The Group will appropriately respond to requests (e.g., disclosure, correction, addition, deletion, suspension of utilization, or suspension of third-party provision) from a n information subject or their authorized representative, and will be handled in accordance with applicable laws and regulations.
  6. 6Handling of Individual Numbers and Specific Personal Information
    In accordance with the “Act on the Use of Numbers to Identify a Specific Individual in Administrative Procedure” and all other relevant laws, regulations, and guidelines, the Group will appropriately handle Individual Numbers (so-called “My Number”) and Specific Personal Information (personal information including Individual Numbers).
  7. 7Continuous Improvement
    The Group will periodically review and revise its personal information management system in light of changes in social conditions and the environment, thereby implementing continuous improvement.

Released: December 2, 2014
Last Updated: September 1, 2025