Policy for Protection of Personal Information

Policy for Protection of Personal Information

Matters regarding Handling of Personal Information for 3D Printed Generative Masks Modeling Service

Supplemental Privacy Notice for 3D Printed Generative Masks Modeling Service

Supplemental Information for Residents of California for 3D Printed Generative Masks Modeling Service

Policy for Protection of Personal Information

DMM Group, listed on our group website (https://dmm-corp.com/company/group/), considers that it is its social responsibility to recognize the importance of personal information and appropriately handle personal information in the course of business operation.

Therefore, to address appropriate handling of personal information as an organization in the course of the operation of business, DMM Group prescribes Personal Information Protection Policy, as follows, and will make it known to its employees and endeavor to protect personal information; provided, however, if there is any conflict or inconsistency between a personal information protection direction, privacy policy, and other direction of policies etc. separately and independently prescribed by a company under DMM Group ( “Independent Policy”), such Independent Policy shall prevail. Independent Policy will be found on website of such respective company.

The words and phrases, which are not defined in this Policy for Protection of Personal Information, are as defined in the Act on the Protection of Personal Information (“APPI”).

  1. Compliance of laws
    DMM Group will comply with APPI and its related laws and regulations.
  2. Security Control Measures
    DMM Group will take appropriate security control measures to prevent the loss, falsification, leakage, etc. of personal information.
    In addition, DMM Group will exercise appropriate supervision over employees and contractors who handle personal information.
  3. Collection and Use of Personal Information
    DMM Group will not collect personal information through deception or other wrongful means.
    DMM Group will use personal information only for the purposes for which it was notified or announced in advance.
    In addition, DMM Group shall not use personal information in a manner that may encourage or induce illegal or unjust acts.
  4. Provision of Personal Information to Third Parties
    Except as pursuant to laws and regulations, DMM Group will not provide personal information to third parties without obtaining the prior consent of the individual.
  5. Disclosure, Correction, Stoppage of Use, Deletion, or the like of Personal Information
    If an individual requests disclosure, correction, stoppage of use, deletion, or the like of his or her personal information, DMM Group will appropriately comply after confirming the identity of the individual.

Established on April 1, 2022
制定日: 2022年4月1日
Note: This is an English translation of 個人情報保護方針 originally established in Japanese. In case of any discrepancy, Japanese language shall always prevail. Original version is found at https://dmm-corp.com/privacy/

Matters regarding Handling of Personal Information for 3D Printed Generative Masks Modeling Service

In accordance with the Act on the Protection of Personal Information of Japan, 3D Print Business Department of DMM.com LLC announces the following matters regarding the handling of personal information of the customers (“Customers”) of 3D Printed Generative Masks Modeling Service (“Service”)

  1. Name of Business Operator Handling Personal Information
    DMM.com LLC (“Company”)
    Sumitomo Fudosan Roppongi Grand Tower 24F,
    Roppongi 3-chome 2-1, Minato-ku, Tokyo
    Keishi Kameyama, Chairman & CEO
  2. Purposes of Use of Personal Information
    1. to send goods and provide services;
    2. for settlement and billing of purchase prices for goods and services;
    3. to confirm the identity of Customers;
    4. to handle inquiries from Customers;
    5. to provide after-sales services;
    6. to provide information about goods, services, or promotional campaigns of the Company and other companies (telephone calls, sending emails, and mailing catalogs and flyers);
    7. to notify Customers about maintenance and other important matters;
    8. for questionnaire surveys and analysis and marketing research and analysis;
    9. to display advertisements;
    10. to improve goods and services;
    11. to prevent inappropriate use of the services of the Company;
    12. to determine the creditworthiness of Customers and collect debts from Customers;
    13. to conduct administrative work related to transactions with Customers;
    14. to provide necessary communications to Customers;
    15. for use incidental to any of the above purposes of use; and
    16. for any other purposes stated in terms of use or the like of the Company.
    If the Company acquires and uses personal information for any purpose of use other than those stated above, the Company will separately make an announcement to that effect on its website, etc.
  3. Provision of Personal Information to Third Parties
    Except for cases where the consent of a Customer is not necessary pursuant to the Act on the Protection of Personal Information of Japan or other laws or regulations, the Company will provide personal information to third parties (including the companies which are listed as DMM Group companies on DMM Group’s website(https://dmm-corp.com/company/group/ and companies located in foreign countries) only after obtaining the consent of the Customer (including cases in which the Customer applied to use the services of the Company by consenting to terms and conditions or the like containing provisions to the effect that personal information will be provided to third parties). The Company may provide personal information to third parties that are located in foreign countries in cases where such third parties have established a system conforms to the standards necessary for the continuous implementation of appropriate measures stipulated in the Act of Protection of Personal Information of Japan.
  4. Provision of Personal Information to Contractors
    The Company may engage third parties (including those in foreign countries) for all or part of the handling of personal information within the scope necessary to achieve the purposes of use.
  5. Regarding Google Analytics
    The Company uses Google Analytics provided by Google Inc. in order for the Company to investigate and analyze the situations etc. of use of the services provided by the Company. Google Analytics collects Customer’s information in using cookies. Please refer to the terms of use of Google Analytics and privacy policy of Google Inc.
    Google Analytics:
    https://www.google.com/intl/ja/analytics/terms/
    Google Privacy Policy:
    https://policies.google.com/privacy?hl=en
    Customers wish to disable Google Analytics, please use opt-out add-on function provided by Google Inc.
    Google Analytics opt-out add-on:
    https://tools.google.com/dlpage/gaoptout?hl=ja
  6. Contact Information for Requesting Disclosure, Correction, Addition, Deletion, Stoppage of Use, Deletion, or the like of Personal Information
    If a Customer makes a request for disclosure, correction, stoppage of use, deletion, or the like of his or her personal information, the Company shall comply after taking prescribed procedures to confirm the identity of the Customer.
    1. Contact information for requesting disclosure, correction, stoppage of use, deletion, or the like of personal information
    2. Contact information for submitting complaints regarding the handling of personal information
  7. Amendment
    The Company will review these “Matters regarding Handling of Personal Information” as necessary and may amend them without prior notice. The amended version will apply from the time when it is published on the website, etc. of the Company.

Established on March 24, 2023
Last amended on March 24, 2023
3D Print Business Department, DMM.com LLC
合同会社DMM.com 3Dプリント事業部

Supplemental Notice on How We Process Your Personal Data for 3D Printed Generative Masks Modeling Service

3D Print Business Department of DMM.com LLC, (“DMM” or “we/our/us”) provides services for your purchase, we take privacy very seriously and undertake to process your personal data in compliance with applicable laws including the EU General Data Protection Regulation (“GDPR”) regarding 3D Printed Generative Masks Modeling Service. Therefore, in addition to, “Policy for Protection of Personal Information (for DMM Group)” and “Matters regarding Handling of Personal Information for 3D Printed Generative Masks Modeling Service,” we hereby set forth this supplemental notice (“Supplemental Notice”) as follows:
Below is our supplemental notice on how we process your personal data.
We may change, add to, or delete any part of this notice from time to time. You can obtain the latest version of this notice on the following URL:
URL: https://www.physicalart.make.dmm.com/gms/privacy-policy/

  1. Personal Data
    Personal data under this notice (“Personal Data”) means any information to identify a person with following items.
    Data SubjectCategoryExamples
    CustomersIdentification information on websitesIP address, Cookie
    Customer nameRegistered name
    Customer contact informationRegistered email address
    AddressPhysical address in contracts etc.
    Wallet addressEtherum account information
    Third PartiesIndividuals’ nameName in contracts etc.
    Contact informationEmail address, telephone number in contracts etc.
    Bank account, credit card informationBank account in contracts etc.
    AddressPhysical address in contracts etc.
  2. Use of Personal Data and Disclosure to Third Parties, Purpose of Data Processing
    We use the collected Personal Data for the following purposes.
    Data SubjectPurposes
    CustomersUse of the services, improvement of service and usage, response to inquiries, prevention of fraud
    Third Parties (e.g. Business partners, Service providers etc.)Fulfillment of contractual obligations and maintaining contact information
  3. Disclosure of Personal Data with Third Parties
    We will disclose Personal Data with the following third parties Business Partners: Contractors, service providers, other business partners, including the followings:
    1. Platform service providers
    2. Cloud service providers
    3. Data center contractors
    4. Business operation support contractors
    5. Developers
    6. Modeling subcontractors
    7. Shipping companies
    8. Fraud monitoring companies
    9. Auditing firms
  4. Legal Basis to Use Personal Data
    We will handle and use Personal Data to the extent applicable to the followings.
    Legal BasisExplanations/Examples
    Fulfillment of contractual obligations To fulfill our contractual obligations by and between you and us purchase of service/item, response to inquiries etc.
    Legitimate interestsTo use Personal Data in order to conduct our business with legitimate reasons: site improvements, prevention of fraud etc.
    Compliance with legal obligationsTo use Personal Data in order to comply with the legal requirements: Judicial/governmental orders, tax procedures etc.
    ConsentWe may ask consent by Data Subject for a use of Personal Data. Consent by Data Subject will be obtained by certain methods including check-box etc.
    The consent by Data Subject will be a legal base for our processing your Personal Data. You can withdraw your consent anytime: Marketing activities, email magazines
    Upon your consent when your consent is regulatory required, we use cookies and similar technologies to compile information about the usage of our websites. When you visit our websites, we or an authorized third party may place a cookie on your browser. Cookies collect information, including your Personal Data, about your online activities over time and across your different sites. Cookies allow us to track overall usage, determine your browsing preferences and improve and customize your browsing experience. We may use both session cookies expiring once you close your browser and persistent cookies staying on your device until they expire or you delete them to improve our service. For more information about how we use cookies, please read our cookie policy. If you fail to provide your Personal Data, we might be unable to maintain our relationship with you or provide our services or products to you to the extent that such Personal Data are necessary to maintain the relationship or to provide the services or products.
  5. CHILD DATA (How we handle child data)
    We do not knowingly collect or solicit Personal Data from anyone under the age of 16 or knowingly allow such persons to access to in order to use the service or purchase products.
  6. RETENTION (How long we retain your Personal Data)
    We will retain your Personal Data only as long as we are entitled or required under applicable laws or it is necessary in relation to the purposes. This is usually 7 years after you close your account, or your last contact in case of non- accountholders. Upon the lapse of the retention period, we will either delete or anonymize your data.
  7. TRANSFERS TO NON-EEA COUNTRIES
    As a majority part of our services in our commercial operations are provided by us in Japan and other countries such as the U.S., your data are processed or stored in the servers or storage devices hosted in Japan and such other countries. In this context, we may transfer your Personal Data to such other countries, where the GDPR is not in force. Your Personal Data are protected by our data transfer agreements with our counterparts. These agreements impose contractual obligations on our counterparts to process your Personal Data in accordance with the GDPR.
  8. YOUR RIGHTS (what legal right you can exercise on your Personal Data)
    According to the GDPR, where you have given your consent to process your Personal Data, you may withdraw your consent or explicit consent at any time. You also have the right to object at any time the processing your data for direct marketing purposes. Additionally, provided that the applicable statutory conditions are met, you have the legal right to access information on what Personal Data we have about you:
    1. correct your personal data if it is inaccurate or incomplete
    2. erase your Personal Data if we have no lawful ground to process them
    3. suspense the using your Personal Data during our way of processing them is being contested
    4. obtain your Personal Data in a computer-readable format
    5. limit the use of your Personal Data
    6. object and use of automated decision making
    7. complain to the supervisory authority
    The exercise of rights is free of charge, except in the case of a manifestly unfounded or excessive request, in which case a reasonable fee may be charged regarding its costs. The information must be provided in writing but may be given orally if requested. In this case, we should verify your identity by means other than oral. The response to requests should be provided within a maximum of 30 days, unless it is a particularly complex request.
  9. Safety Control Measures
    We take the security and confidentiality of Personal Data. We take technical, administrative and physical security measures to prevent Personal Data from fraudulent accesses and improper uses. We conduct periodical review of the security measures to consider implementation of new technologies or methodologies. While we will spend best effort for security measures, there are no perfect/iron wall measures. Our companies’ current security measures to prevent from fraudulent physical accesses and fraudulent electrical accesses are as follows: Personal Data is to be stored in a securely locked location, Personal Data is to be restricted and accessed only by the personnel in charge, Personal Data is to be accessible only with unique password of personnel in charge, Personal Data which needs special protection, we will apply industry standard encryption technology for such special protection, Personal Data is to be processed in accordance with a documented security policy to be complied by all of our personnel.
  10. INQUIRY
    For further information and inquiry, contact: Our Data Protection Organization provides support with any data privacy related questions, comments, concerns or complaints or in case you wish to exercise any of your data privacy related rights in connection with us. Our Data Protection Organization will be contacted by email. Our Data Protection Organization will always use best efforts to address and settle any requests or complaints you bring through the email address below:
  11. CONTACT DETAILS:
    Data Protection OfficerMaetzler Rechtsanwalts GmbH & Co KG Schellinggasse 3 1010 Vienna, AUSTRIA office@iuro.at
    Representative in UKPrighter Ltd 20 Mortlake High Street London, SW14 8JN UNITED KINGDOM support@prighter.com
    Representative in EUMaetzler Rechtsanwalts GmbH & Co KG Schellinggasse 3 1010 Vienna, AUSTRIA support@prighter.com
===========================================

Supplemental Information for Residents of California for 3D Printed Generative Masks Modeling Service

If you are a resident of California, the California Consumer Privacy Act (“CCPA”) provides you with additional rights regarding your Personal Data for 3D Printed Generative Masks Modeling Service.

CCPA Privacy Disclosures

We collect, use or disclose these categories of Personal Data as described in Matters regarding Handling of Personal Information for 3D Printed Generative Masks Modeling Service Handling of Personal Information and its Supplemental Notice above.

Your Rights

As a California resident, you additionally have the following rights:

  1. Right to Access Specific Information: You may request the specific pieces of Personal data that we have collected about you.
  2. Right to Know about our Collection and Disclosure Practices: You may request that we describe the categories of Personal Data we have collected about you, the categories of sources from which the Personal Data is collected, the categories of Personal Data that we have [sold or] disclosed for a business purpose about you, the categories of third parties to whom the Personal Data was [sold or] disclosed for a business purpose, and the business or commercial purpose for collecting [or selling] the Personal Data.
  3. Right to Deletion. You may request that we delete Personal Data we have collected from you, subject to certain exceptions.
  4. Right to Opt-Out of Sales. You may request that we not sell your Personal Data to third parties. The term “sale” is defined broadly under the California Consumer Privacy Act. To the extent that “sale” under the CCPA is interpreted to include interest-based advertising or other data uses described in the Section.
  5. Right to Non-Discrimination. We will not discriminate against you for exercising any of your privacy rights under CCPA or applicable law, including by, denying you Service, providing you a different level of Service, or suggesting that you will receive a different level of quality of goods or services.
  6. Right to Correct. You my request the modification of your Personal Data that is inaccurate or request incomplete Personal Data.

The exercise of rights is free of charge, except in the case of a manifestly unfounded or excessive request, in which case a reasonable fee may be charged regarding its costs.

The information must be provided in writing but may be given orally if requested. In this case, we should verify your identity by means other than oral.

The response to requests based on the provisions of the CCPA should be provided within a maximum of 45 days. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing.

Once the retention period expires, Personal Data shall be deleted. Therefore, the right to access, the right to erasure, the right to rectification and the right to data portability cannot be enforced after expiration of the retention period.

As a California resident you can exercise your rights in the following way:
Mailing us: customer-dmm@prighter.com
Only you or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your Personal Information. You may also make a verifiable consumer request on behalf of your minor child.

You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:

  1. Provide sufficient information that allows us to reasonably verify you are the person about whom we collected Personal Information or an authorized representative.
  2. Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.

We cannot respond to your request or provide you with Personal Information if we cannot verify your identity or authority to make the request and confirm the Personal Information relates to you. Making a verifiable consumer request does not require you to create an account with us. We will only use Personal Information provided in a verifiable consumer request to verify the requestor's identity or authority to make the request.

Children Data

We do not knowingly collect or solicit Personal Data from anyone under the age of 16 or knowingly allow such persons to access to in order to use the service or purchase products. Shine the Light

Shine the Light

California’s “Shine the Light” law (Civil Code Section § 1798.83) permits users of our Service who are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please contact us using the contact details described below:

Email address: customer-dmm@prighter.com

Download Privacy Policy
You can download the policies and notices above by clicking the bottom above.