DIAS Privacy Policy


The Remote Sensing Technology Center of Japan (hereinafter, the “Foundation”) recognizes the importance of users’ personal information. This Privacy Policy is established as a basic policy for the Foundation to acquire and use personal information of users in an appropriate and safe manner in relation to the provision of services (hereinafter, the “Services”) relating to the Data Integration and Analysis System operated by the Foundation (hereinafter, “DIAS”).
 

Please note that users located in the member states of the European Union, Iceland, Liechtenstein, Norway and the United Kingdom are also subject to the provisions of the “Handling of Data on Persons Located in the European Union, the European Economic Area and the United Kingdom” in addition to this Privacy Policy.
 

Article 1 Definitions

Unless otherwise defined, the terms used in this Privacy Policy shall be as defined in the following items as well as “DIAS Terms of Service,” the “Act on the Protection of Personal Information” (hereinafter, the “Act”) and various guidelines prescribed by the Personal Information Protection Commission and other relevant authorities and other related laws and regulations:

  • (1) “Data Provider”: A user of the Services who provides DIAS Datasets to other Users;
  • (2) “DIAS Account”: An account required for Users to use DIAS web-based Applications provided by DIAS, such as the DIAS download system and DIAS metadata management system, of the Services;
  • (3) “DIAS Analysis Environment Account”: User’s account required to log in to the DIAS analysis server or analysis cluster of the Services;
  • (4) “Personal Information”: Personal information prescribed in Article 2, Paragraph 1 of the Act;
  • (5) “Special Care-Required Personal Information”: Special Care-Required Personal Information prescribed in Article 2, Paragraph 3 of the Act;
  • (6) “Personal Data”: Personal data prescribed in Article 2, Paragraph 6 of the Act; and
  • (7) “Retained Personal Data”: Retained personal data prescribed in Article 2, Paragraph 7 of the Act.

Article 2 Compliance with Laws and Regulations

  1. When handling Personal Information, the Foundation shall comply with the Act and other applicable laws and regulations as well as this Privacy Policy.
  2. The Foundation shall not handle Personal Information beyond the extent necessary for the achievement of the purpose of use specified under Article 4 without the prior consent of the Users.

Article 3 Acquisition of Personal Information

  1. In providing the Services, the Foundation shall acquire personal information of the Users by an appropriate method in order to use the information within the scope necessary to achieve the purpose of use under Article 4. The Personal Information to be obtained and the purpose of use thereof shall be as prescribed in the following Article.
  2. If obtaining Special Care-Required Personal Information, the Foundation shall obtain the prior consent of the individual concerned except in cases permitted by laws and regulations to be treated as exceptions.

Article 4 Purpose of Use of Personal Information

The Foundation shall handle the Personal Information of Users acquired within the scope necessary to achieve the following purposes. If any addition or change is made to the purpose of use to the extent reasonably deemed relevant to the purposes listed below, the Foundation shall individually notify the Users or publish the purpose of use after such addition or change.

  1. The Foundation will use the following information obtained, to create and manage accounts for the Users of the Services, to communicate maintenance and Failures, to send notifications of events, questionnaires, etc., and to understand and analyze the status of use of the Services:
    • (1) Information obtained when creating a DIAS Account
      • E-mail address
      • Password
      • Name
      • Country
      • Organization name
      • Phone number
      • Field of interest
    • (2) Information obtained when creating a DIAS Analysis Environment Account
      • E-mail address
      • Name
      • Organization name
      • Department name
      • Position
      • Location
      • Adviser
      • Phone number
      • Purpose of use (Details)
    • (3) Information obtained when using the Services
      • Status of use of DIAS Datasets (type, number and size of datasets to be used)
      • Status of use of DIAS analysis servers or analysis clusters
  2. For datasets that require applications to Data Providers when using them, the Foundation will use the following information obtained, to determine whether the application is acceptable, to understand and analyze the usage status of the datasets after the approval of the application, and to communicate and provide guidance regarding the use of the datasets:
    • (1) Information obtained when applying for use of the datasets
      • E-mail address
      • Name
      • Country
      • Organization name/
      • Department name
      • Position
      • Name, country, organization name, department name and position of the research collaborator
      • Address
      • Phone number
      • Purpose of use (details)
      • Research Plan (details)
    • (2) Information obtained when using the datasets
      • Status of use of the datasets (type, number and size of datasets to be used)

Article 5 Provision of Personal Data to Third Parties

  1. In accordance with the provisions of the Act, the Foundation shall not provide Personal Data of Users to third parties, except in the following cases:
    • (1) If the consent of the User is obtained;
    • (2) If Personal Data is provided under laws and regulations;
    • (3) If the provision of Personal Information is necessary for the protection of the life, body, or property of an individual and it is difficult to obtain the consent of the User;
    • (4) If the provision of Personal Information is particularly necessary for improving public health or promoting the sound growth of children and it is difficult to obtain the consent of the User; or
    • (5) If it is for cooperating with a state organ, a local government, or an individual or a business operator entrusted by either of the former two in executing the affairs prescribed by laws and regulations and obtaining the consent of the person is likely to impede the execution of the affairs concerned.
  2. The Foundation may provide Personal Data of the User to a third party in order to achieve the purposes of use stated in Article 4 with the consent of the User.
  3. If Personal Data is provided to or received from a third party, the Foundation shall keep a record of necessary matters in accordance with the Act and keep the record for a period of time prescribed by the Rules of the Personal Information Protection Commission.

Article 6 Outsourcing of Handling of Personal Data

The Foundation may outsource all or part of the handling of the Personal Data of the Users to the extent necessary to achieve the purposes of use listed in Article 4. In this case, the Foundation will select an appropriate contractor, sign a contract to appropriately protect Personal Data, and supervise the contractor as necessary and appropriately in accordance with the Act and other relevant laws and regulations.
 

Article 7 Shared Use of Personal Data

As the Services are provided in cooperation with the University of Tokyo, Kyoto University and Data Providers, the Foundation shall handle the Personal Data of the Users jointly with the above third parties under the proper management. The scope of shared use shall be as specified in the “Scope of Shared Use of Personal Data.”
 

Article 8 Management of Personal Data

The Foundation shall take necessary and appropriate measures for the prevention of leakage, loss or damage and for other security control of Personal Information. The Foundation shall strive to keep the Personal Data it holds accurate and up to date within the scope necessary to achieve the purpose of use, and to delete the Personal Data without delay when the use becomes unnecessary.
 

Article 9 Matters Relating to Retained Personal Data

The following are the matters to be published with regard to Retained Personal Data:

  1. Name of business operator handling personal information
    The Remote Sensing Technology Center of Japan, the University of Tokyo, and Kyoto University
  2. Purpose of use of Retained Personal Data
    Same as Article 4
  3. Procedures for dealing with requests for Disclosure
    – If a User requests notification of the purpose of use, Disclosure, correction, addition, deletion, suspension of use, elimination, or suspension of provision to a third party of his/her Personal Information, please contact the following contact information. We will send you a letter of invitation, please fill in the necessary information and return it to the address below.
     
    – Reception desk
    The DIAS Secretariat, Remote Sensing Technology Center of Japan
    Address: TOKYU REIT Toranomon Bldg. 2nd Floor, 17-1, Toranomon 3-chome, Minato-ku, Tokyo 105-0001, Japan
    Email: dias-office@diasjp.net
    * Any suggestions regarding the handling of Retained Personal Data may also be addressed to the above contact information.

Article 10 Use in a Way that Cannot Identify the Individual

The Foundation may use Personal Information in the form of statistical information or other information that cannot be used to identify individuals for the purpose of security control of Personal Information and improvement of the quality of the Services.
 

Article 11 Cookies

A cookie is an information file sent from the server to the User’s browser and stored on the User’s computer in order for the server to identify the User. The Foundation uses cookies to statistically investigate and analyze the browsing status to improve the convenience of the Users of the DIAS website (hereinafter, the “Site”) and the Services. The Site and the Services collect information such as internet domain name, IP address, site browsing history, but excluding identifiable Personal Information.
 
The Services use Google Analytics to track usage of the Services. For more information, see “How Google Uses Information From Sites and Apps That Use Our Services.” You can also disable cookies by setting your browser. Disabling cookies does not affect the use of the Site or the Services.
 

Article 12 Review of Privacy Policy

The Foundation may review and amend this Privacy Policy from time to time; provided, however, that changes in the purpose of use shall not exceed the extent that is reasonably considered to be related to the original purpose of use.
 

Article 13 With Respect to the Original

This Privacy Policy is prepared in Japanese, the Japanese version of which is the original. Translation of this Privacy Policy into any language other than Japanese is for reference purposes only, and if there is any inconsistency or conflict with the Japanese version, the Japanese version prevails.
 
 

Scope of Shared Use of Personal Data (Relating to Article 7 of the Privacy Policy)

In the case of shared use of Personal Data beyond the scope described below, the Foundation will separately notify or publish the matters related to the shared use of Personal Data to Users upon application for use of the relevant Datasets or use of the Data.

Shared use with DIAS implementing organizations

Items of the Personal Data for shared useAll information listed in Article 4 of the Privacy Policy
Scope of persons who share and use the Personal DataThe University of Tokyo, Kyoto University and the International Centre for Water Hazard and Risk Management
Purpose of use of the person who share and use the Personal DataEach of the purposes listed in Article 4 of the Privacy Policy
Person responsible for the management of Personal Data for shared useThe Remote Sensing Technology Center of Japan

 

Handling of Data on Persons Located in the European Union, the European Economic Area and the United Kingdom

The handling of the information identifying or enabling the identification of persons located in the member states of the European Union, Iceland, Liechtenstein, Norway and the United Kingdom (hereinafter, collectively the “EU”) (hereinafter, “Data on Persons Located in the EU”) shall be subject to the General Data Protection Regulation (hereinafter, the “GDPR”) as well as the following provisions:
 

1. Controller

The “persons who share and use the Personal Data” as set out in Article 7, including the Foundation, shall process the Data of Persons Located in the EU as a controller.

2. Acquisition of Data on Persons Located in the EU

In addition to the Personal Data listed in Article 4, the Foundation shall use cookies listed in Article 11 to acquire Users’ information such as the browsing history of websites that provide the Services.

3. Purpose and legal basis for processing Data on Persons Located in the EU

The Foundation shall process the Data on Persons Located in the EU for the purposes stated in Article 4 “Purpose of Use” respectively, based on the legal basis of legitimate interests (Article 6(1)(f) of the GDPR), unless it obtains Users’ consent. A User may withdraw his/her consent at any time, but the legality of the processing before the withdrawal shall not be affected.

4. Recipients of the Data on Persons Located in the EU

The Foundation shall share the Data on Persons Located in the EU with the third parties set out in Article 7. If sharing with the third parties is not covered by the validation of adequacy between Japan and the EU, the Foundation shall take appropriate protective measures such as the conclusion of standard contractual clauses.

5. Retention period for the Data on Persons Located in the EU

The Foundation shall maintain the Data on Persons Located in the EU to the extent necessary for the achievement of the purpose of processing such data. The specific retention period shall be determined taking into account the purpose, nature and legal or business needs of the acquisition and processing of the Data on Persons Located in the EU.

6. Exercise of Rights relating to the Data of Persons Located in the EU

Users have the right to obtain information about, access, correct or delete, restrict processing of, dispute, data portability, and not to be subject to automated decision making regarding the Data on Persons Located in the EU. To exercise these rights, please contact us at the address specified in Article 9, Paragraph 3 of the Privacy Policy. Users may also file an objection with any competent data protection entity.