1. Home
  2. Privacy Policy

Privacy Policy

Principles of acquisition

We acquire the minimum personal information to the extent necessary to achieve our purpose of use.

Registration and provision of personal information are optional, but if you do not register or provide your information required for each item, you may not be able to receive the respective services, etc.

We will not, in principle, acquire sensitive information that may cause unreasonable discrimination, prejudice, or other disadvantages, however, if there are justifiable grounds within the extent of the purpose of use of the personal information, we may obtain the following sensitive information after obtaining your consent.

Examples of sensitive information

  • Matters relating to political views, philosophical beliefs, and religion

  • Race, ethnicity, family origin, physical or mental disability, criminal record, and other matters that may cause social discrimination

  • Matters concerning the right of workers to organize, collective bargaining or other collective action

  • Participation in collective demonstrations, exercise of the right to petition, and other matters concerning the exercise of political rights

  • Health, medical or sex life

We may acquire, store and use Individual Related Information which contains attribute information (such as age, gender, and residential areas) that does not correspond to personal information on its own or information of Internet use (such as IP addresses, MAC addresses, SSID, terminal identifiers such as cookies, RDID, and web beacons).
In addition, we may receive, store and use Individual Related Information from DMP operators and other advertising companies, research and analysis companies, media operators, database management companies and other business contractors and partners.
Although it is not possible to identify a particular individual on its own, after obtaining your consent, we may treat it as identifiable data by linking it to other information that we hold.

Purpose of use of personal information

In principle, when acquiring personal information, we will clearly indicate the purpose of use in writing, on the website screen, orally, or by other means on a case-by-case basis.
When the purpose of use for personal information is clear, such as when the contact is initiated or requested by you, or when the business card is exchanged under business practices, we may not indicate the purpose of use. Even in this case, the personal information acquired will be used within the extent of the purpose of use indicated to you.

Contents of personal information Purpose of Use
Personal information on the person who requested the inquiry or consultation, etc.

・To respond appropriately to inquiries and consultations from you

・To request cooperation to satisfy the request for the above consultation service, etc.

Personal information handled by each service

・To operate, maintain and improve the quality of our services and to respond to inquiries about our services

*For the detailed purpose of use for personal information for each service, please check the Terms of Use or equivalent document for each service.

Personal information handled in research and development

・For the planning, development, advertising, introduction, and marketing of beauty-and-health-related products and services

・For inclusion in research and papers, presentations at academic meetings, and other academic and research purposes

・For publishing in training materials and other uses in various training sessions

・For corporate brochures, business reports, publication in company history materials, and other public relations activities

Personal information related to business partners ・For business negotiations and associated contacts
Information on the "Shareholders of Shiseido Co., Ltd. Stated in the Shareholder Registry"

・For the purpose of exercising shareholders' rights and fulfilling our obligations in accordance with the Companies Act and other relevant laws and regulations

・To provide various information and services regarding the status of shareholders and to conduct surveys and other measures to facilitate the relationship between shareholders and us

・For shareholder management, including the preparation of shareholder data based on prescribed standards under the Companies Act and other related laws and regulations

Information on "recruitment candidates" (including unofficial offers, early unofficial offers, and internships)

・For sharing information and communicating with recruitment candidates, including internships

・For recruitment selection

・For job offer management

・For consideration of assignments after formal employment

Information on "employees" ・For the management of employees
Information on "retirees" ・To provide information to retirees and to pay retirement benefits and pensions
Information on Disclosure, etc., of Personal Information and Applicants for Complaints and Consultations ・In order to respond to Disclosure, etc., of personal information (disclosure of the purpose of use, disclosure, correction, addition, deletion, cease of utilization, and cease of provision to a third party of personal information)
Applicant information on other application activities

・To operate, maintain, develop and improve other application activities, and to respond to inquiries about the activities

*For the detailed purpose of use of personal information for each activity, please check the Terms of Use or the equivalent document for each activity.

Provision of personal information, etc., to a third party

In the event we provide personal information to a third party (a company other than us), except as otherwise provided by law, we shall obtain your prior consent concerning the provision to a third party.
Provided, however, that even if it is provided to a company other than us, in the following cases, it may not be regarded as a "third party" because it may be regarded as the same entity as us in substance, and therefore, we may not obtain your prior consent for such provision.
Provided, however, that even if it is provided to a company other than the acquired company, in the following cases, it may not be regarded as a "third party" because it may be regarded as the same entity as the acquired company in substance, and therefore, we may not obtain your prior consent for such provision.

  • When outsourcing all or part of the handling of personal information to an outside company, etc.

  • Cases where personal information is provided due to merger of the Company or succession of business, etc.

  • Where two or more companies, etc., jointly use personal information in order to achieve the "Purpose of Use"

In some cases, we handle Individual Related Information. When we provide Individual Related Information to a third party, personal information provided may be treated as personal information at the third-party recipients by linking it to other data held by the third-party recipients. In the event it is anticipated that Individual Related Information will be handled in such a manner, we will provide Individual Related Information to a third party only after confirming that consent has been obtained from you.

Provision of personal information to a third party in overseas countries and regions

  1. 1. Provision based on your consent
  2. 2. Provision of personal information to a third party in EU/EEA member countries and the United Kingdom which are recognized as having a personal information protection system at the same level as Japan in the "Enforcement Regulations of the Personal Information Protection Law (Personal Information Protection Commission Regulation No. 3 of 2016)"
  3. 3. Provision to a party to whom it is considered possible to guarantee that measures for the handling of personal information required by the Act on the Protection of Personal Information in Japan are continuously taken

Examples of paragraph 3:

Joint utilization of personal information

We may jointly utilize acquired personal information with other companies in accordance with procedures permitted by law. When we jointly utilize personal information with other companies, we provide notice of the following.

  • The fact that they will jointly utilize personal information

  • The categories of the jointly utilized personal information

  • Scope of a jointly utilizing person

  • The purpose of use of the utilizing person

  • The name or appellation and address, and, for a corporate body, the name of its representative of the person responsible for controlling the said personal data;

How long the information is kept

We will strive to delete personal information without delay if we have achieved the matters stated in the purpose of use of personal information and determine that there is no need to retain such personal information. When possible, the retention period of the personal information shall be stated in the terms of use for the individual service, etc. In addition, if we receive a request from you to delete your personal information, we will delete the personal information unless there are special circumstances.

When consent is obtained from a person other than you

If you do not have sufficient ability to judge the consequences of your consent to the handling of personal information, your representative or someone other than you may provide consent on your behalf.

Ensuring the security of personal information

In order to ensure the security (confidentiality, integrity and availability) of personal information, we will establish and maintain a system for the protection and management of personal information and procedures for the handling of personal information, and will properly protect, manage and use such information.

  • Confidentiality: Manage personal information so that it is not accessible to anyone other than a defined person.

  • Integrity: Manage personal information so that it is not falsified or damaged.

  • Availability: Manage the handling of personal information so that it is available only in situations where it is necessary.

The personal information protection management system consists of the implementation of safety management measures from the aspects of organization, people, physical, and technology. An overview of this is shown below.

<Organizational safety management measures>

We develop and maintain a system for protecting personal information under the instructions of the Chief Information Security Officer at Shiseido Co., Ltd.
In the handling of personal information, the heads of each department and facility of each Shiseido Group company shall be the responsible persons for protecting personal information, and under the direction of the responsible person, a limited number of persons will be put in charge of handling personal information to ensure appropriate protection, management, and use of said information.
The person responsible for protecting personal information is obliged to conduct periodic inspections into the management and operation of personal information. In the event that improper handling of personal information is discovered through said inspections, in addition to informing all employees, the cause of the improper handling shall be identified, corrective measures implemented, and measures to prevent recurrence formulated.

<Human safety management measures>

In order for employees to properly handle personal information, we regularly conduct education and training programs for all employees engaged in business related to the handling of personal information.

<Physical safety management measures>

In order to restrict access to facilities where personal information is stored, we are reinforcing the security of entering and leaving of the facilities, certifying those who enter and leave the facilities, and taking measures to prevent other persons from entering and leaving the facilities. In addition, records of entering and leaving the facilities and other facilities are prepared so that the facts of entering and leaving can be confirmed afterwards.

<Technical safety management measures>

When personal information is handled through a system, the establishment, management, operation, security measures, etc., of the system will be implemented in accordance with the regulations concerning the handling of information systems. Certification and authorization functions will be provided so that the person in charge can perform only the identified operations, and monitoring will be conducted to ensure that there are no problems in the status of handling.

<Understanding of the external environment>

Entrustment of operations handling personal information

In the event it is necessary to provide retained personal information to an entrusted company due to the entrustment of business involving the handling of personal information, we will conclude an agreement requiring the appropriate management of the information designated by us after carefully selecting a trustworthy entrusted company. In addition, we will regularly receive reports on the status of handling personal information from the entrusted company in order to confirm that the entrusted company properly handles personal information in accordance with the applicable agreement, and if there are any problems, we will clearly indicate the measures to be taken for improvement as needed.

Handling pseudonymously processed information

In some cases, we handle pseudonymously processed information after appropriately processing personal information in our possession in accordance with laws and regulations. In the event the information is used as pseudonymously processed information for purposes other than those stated in the purpose of use of the personal information, the following matters shall be disclosed.

  • Contents of pseudonymously processed information to be prepared

  • Purpose of use of pseudonymously processed information

When handling anonymously processed information

We may prepare and provide anonymously processed information to a third party by properly processing the obtained personal information so that it cannot be identified as belonging to a specific individual and the personal information used for the preparation thereof cannot be restored in accordance with the procedures permitted by laws and regulations.
When preparing or providing anonymously processed information, the following matters shall be publicly announced.

  • Safety management measures, etc., concerning anonymously processed information

  • Categories of information relating to an individual included in anonymously processed information to be prepared

  • Categories of information relating to an individual contained in anonymously processed information to be provided to third parties and its providing method

  • Inquiry method for anonymously processed information

Matters concerning the procedure for responding to a demand, etc., for Disclosure, etc.

In response to a request from you, we will respond to a notification of the purpose of use, disclosure, correction, addition or deletion, cease of utilization and cease of provision to a third party of personal information, and disclosure of records relating to the provision or receipt of personal information to a third party (hereinafter referred to as "Disclosure, etc.") with regard to personal information stated in the purpose of use of personal information.
The recipients of "a demand for Disclosure, etc." related to a " Beauty Key Member" information and "Shareholders of Shiseido Co., Ltd." are as follows:

Contents of personal information The procedure for a demand, etc., for Disclosure, etc.
Beauty Key Members

"Disclosure," "Change," and "Withdrawal" related to information of a " Beauty Key Member " will be conducted on your own from the following pages within the Shiseido website.
In doing so, please enter the member ID (email address) and passwords managed under your responsibility.

Click here for confirmation and change of registration of Beauty Key Members. (Japanese Only)

Shareholders of Shiseido Company, Limited

Please contact Sumitomo Mitsui Trust Bank, Limited, the shareholder registry administrator of Shiseido Co., Ltd., for "disclosure," "changes," etc., related to information of "shareholders of Shiseido Company, Limited." Please also check with Sumitomo Mitsui Trust Bank, Limited for the specific procedures in such case.

<Applications>
Stock Transfer Agency Business Planning Dept.
Sumitomo Mitsui Trust Bank, Limited
2-8-4 Izumi, Suginami-ku, Tokyo 168-0063
Phone: 0120-782-031 (toll-free number)

For shares owned for the account of a securities company, please submit to such securities company of the transaction, etc.

Please refer to the individual service terms of use for the party to whom the demand for Disclosure, etc., is made, the method of request, and the contents that can be handled with regard to individual services other than the above. Please note that we may not be able to accept your demands, such as when you need to submit an application directly at a store.
When demanding for Disclosure, etc., of information other than the above, please fill in the required information in the adequate document below, enclose a document to confirm the identity, and send it to the following address. When doing so, please write "Personal Information Disclosure Demands Involved in Documents" on the envelope.

The party to whom the demand for Disclosure, etc., is made, documents to confirm the identity, how to respond to a demand for Disclosure, etc., purpose of use of personal information obtained in connection with a demand for Disclosure, etc., and reasons for non-disclosure of "personal information subject to disclosure" are as follows.

The party to whom the demand for Disclosure, etc., is made

1-6-2, Higashi-Shimbashi, Minato-ku, Tokyo 105-8310
Shiseido Customer Service Center

*Please write " Personal Information Disclosure Demands Involved in Documents " on the envelope, and send it by registered mail.

Documents to confirm the identity

Identification documents:

  • ・Driver's license
  • ・Passport
  • ・Health insurance card
  • ・Residence card
  • ・Copy of resident certificate

*All identification documents must be valid or issued within the past 3 months.

*Please black out the insurance provider number and insured person code/number on the health insurance card.

*If there is a change of address or other information on the back of the driver's license, please also send a copy of the back side.

Confirmation documents for proxy:

[In the case of a legal representative of a minor (one of the following copies)]

  • Documents confirming the legal representation: Copy of family register, resident certificate, and if the parent is the legal representative, a copy of the insurance card with the dependent family members listed.
  • Documents that can confirm the identity of the proxy.

[In the case of a legal representative of an adult ward]

  • Documents confirming the legal representation: Copy of court appointment decision (or a copy) or a certificate of entry in the ward registration.
  • Documents that can confirm the identity of the proxy.

[In the case of a voluntary proxy]

  • Letter of attorney: A document in which the individual delegates the request for disclosure of personal data to the proxy, signed and sealed by the individual.
  • Copy of the individual's registered seal certificate.
  • Identification documents for the voluntary proxy (refer to the previous 2(1)).
    Please note that if the proxy is a lawyer, judicial scrivener, administrative scrivener, or any other person who has the qualifications to act as a proxy due to their professional duties, they must provide documents proving their qualifications (registration number, certificate of registered seal related to their official stamp).
How to respond to a demand for Disclosure, etc. After confirming the identity of the person demanding Disclosure, etc., we will respond by completing the method in the "Disclosure Method" section of the application for Disclosure, etc. (In the case of an application by a proxy, we will respond to the proxy as soon as we confirm that the demand by the proxy is legitimate.)
Purpose of use of personal information obtained in connection with a demand for Disclosure, etc. Personal information obtained in connection with a demand for Disclosure, etc., shall be handled only to the extent necessary for the demand for Disclosure, etc.
The submitted documents will be stored for five years after the response to the demand for Disclosure, etc., is completed, and will be deleted thereafter.
Reasons for non-disclosure of "personal information subject to disclosure"

We will not disclose if the following is stipulated. When we decide not to disclose the information, we will notify you to that effect and the reason.

  1. (1) When the identity cannot be confirmed at the time of demand, such as when the address, name, date of birth, ID or password of the registrant does not match.

  2. (2) Cases where authority of representation cannot be confirmed upon application by a proxy.

  3. (3) Cases where the subject matter of demand for Disclosure, etc., does not fall under "Personal Information Subject to Disclosure."

  4. (4) Cases where there is a risk of harm to the life, body, property, or other rights and interests of you or a third party.

  5. (5) Cases in which the proper execution of our business is likely to be seriously hindered.

  6. (6) Cases in which disclosure violates other laws and regulations.

For inquiries about personal information

We will promptly respond to requests for the handling of personal information. If necessary, please contact us at the following address.

<Contact Information>
Shiseido Customer Service
1-6-2 Higashi-Shimbashi, Minato-ku, Tokyo 105-8310
Phone: 0120-81-4710 (9:00-17:00; excluding Saturdays, Sundays and national holidays)

Beauty Key Customer Service
Phone: 0120-77-4710 (9:00-17:00; not available during the year-end and New Year holidays and on statutory inspection days)

<Notice>

Please note that we do not accept any requests via personal visits to our company.
Also note that your inquiries to our toll-free number will be recorded for improvement of our customer service.
We appreciate your understanding and cooperation in this matter.

<Name and address of business operator handling personal information and name of representative>

Name Shiseido Company, Limited
Address 7-5-5, Ginza, Chuo-ku, Tokyo 104-0061
Representative Kentaro Fujiwara, Representative Director
Name Shiseido Japan Co., Ltd.
Address 7-5-5, Ginza, Chuo-ku, Tokyo 104-0061
Representative Norio Tadakawa, Representative Director

This Privacy Policy shall be governed by and construed in accordance with the laws of Japan.
In the event of any dispute, the Japanese version of this Privacy Policy will prevail over any other language versions.

This Privacy Policy may be updated. Please check the last modified date.

Last Modified: Aug 25, 2023