Privacy Policy

Last updated: January 8, 2026

Our Commitment to Data Protection

At Anzen-kan, we treat data protection with the same systematic care we apply to risk management consulting. This Privacy Policy explains how we collect, use, store, and protect your personal information when you interact with our website and services.

We are committed to transparency in our data practices and ensuring your information is handled with appropriate security measures. This policy applies to all personal data we process through our website, email communications, and consulting engagements.

Information We Collect

Information You Provide Directly

When you use our contact forms or communicate with us, we may collect:

Name and professional title
Email address and phone number
Company name and business information
Message content and inquiry details
Any other information you choose to provide

Information Collected Automatically

When you visit our website, we automatically collect:

IP address and general location data
Browser type, version, and language settings
Device information and operating system
Pages visited, time spent, and navigation paths
Referring website and search terms used

Cookies and Similar Technologies

We use cookies and similar tracking technologies to enhance website functionality and gather usage statistics. For detailed information about our cookie usage, please refer to our Cookie Policy.

How We Use Your Information

We process your personal data for the following purposes:

Service Delivery

Responding to your inquiries and contact requests
Providing risk management consulting services
Communicating about service delivery and project updates
Processing and managing client engagements

Website Improvement

Analyzing website usage patterns and visitor behavior
Improving website functionality and user experience
Testing new features and optimizing content
Identifying and resolving technical issues

Marketing Communications

Sending relevant information about our services (with your consent)
Sharing industry insights and risk management updates
Notifying you of new service offerings

Legal Compliance

Complying with legal obligations and regulatory requirements
Protecting against fraud and unauthorized access
Enforcing our terms of service and agreements
Responding to legal requests and proceedings

Legal Basis for Processing

We process your personal data based on one or more of the following legal grounds:

Consent: You have given clear consent for us to process your data for specific purposes
Contract: Processing is necessary to fulfill our contractual obligations to you
Legal Obligation: We must process your data to comply with the law
Legitimate Interests: Processing is necessary for our legitimate business interests, provided this doesn't override your rights

Data Sharing and Disclosure

We do not sell your personal information to third parties. We may share your data in the following limited circumstances:

Service Providers: We work with trusted third-party service providers who assist with website hosting, analytics, email communications, and other business operations. These providers are contractually obligated to protect your data and use it only for specified purposes.
Legal Requirements: We may disclose information when required by law, court order, or government regulation, or when necessary to protect our rights, property, or safety.
Business Transfers: If our company undergoes a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. You will be notified of any such change.
With Your Consent: We may share your information for purposes not covered in this policy when we have obtained your explicit consent.

All third-party processors with whom we share data are required to implement appropriate security measures and are prohibited from using your personal information for their own purposes.

Data Protection and Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. Our security practices include:

Technical Safeguards

Encrypted data transmission (SSL/TLS)
Secure data storage with access controls
Regular security assessments and updates
Firewall protection and intrusion detection
Secure backup and disaster recovery procedures

Organizational Measures

Limited employee access to personal data
Confidentiality agreements with staff
Regular security training and awareness programs
Incident response and breach notification procedures
Vendor security requirements and audits

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

Contact form submissions: Retained for up to 3 years or until you request deletion
Client engagement data: Retained for the duration of the engagement plus 7 years for legal and regulatory compliance
Website analytics: Aggregated data retained indefinitely; individual user data retained for 26 months
Marketing communications: Retained until you withdraw consent or unsubscribe

Your Privacy Rights

You have the following rights regarding your personal data. To exercise any of these rights, please contact us using the information provided above.

Right to Access

Request a copy of the personal data we hold about you, including information about how we process it.

Right to Rectification

Request correction of inaccurate or incomplete personal data we hold about you.

Right to Erasure

Request deletion of your personal data when it is no longer necessary for the purposes for which it was collected, or when you withdraw consent.

Right to Restrict Processing

Request that we limit how we use your personal data in certain circumstances, such as while we verify its accuracy.

Right to Data Portability

Request a copy of your personal data in a structured, commonly used, machine-readable format to transfer to another service provider.

Right to Object

Object to processing of your personal data based on our legitimate interests, including direct marketing communications.

Right to Withdraw Consent

Withdraw your consent to data processing at any time, without affecting the lawfulness of processing based on consent before withdrawal.

Right to Lodge a Complaint

Lodge a complaint with your local data protection authority if you believe your rights have been violated.

We will respond to requests to exercise these rights within one month. In complex cases, we may extend this period by two additional months, and we will inform you of any such extension.

Your Rights and Opt-Out Instructions

You are not required to provide any personal information when using this website. If you prefer not to share your data, you may:

Avoid filling out contact forms, account registrations, or any data-submitting features
Disable cookies through your browser settings (see our Cookie Policy for more details)
Contact us directly to request the deletion of any previously shared personal data

We respect your privacy choices. If you would like us to delete your data, please reach out to us at the contact details provided above. We will process your request promptly and confirm when your data has been removed from our systems, subject to any legal retention requirements.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make significant changes, we will notify you by:

Updating the "Last updated" date at the top of this policy
Posting a notice on our website homepage
Sending an email notification to registered users (where applicable)

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our website after changes are posted constitutes acceptance of the updated policy.

Questions and Contact

If you have questions about this Privacy Policy or our data practices, or if you wish to exercise any of your privacy rights, please contact us:

Anzen-kan

9-7-4 Akasaka, Minato-ku, Tokyo 107-0052

Email: info@domain.com

Phone: +81 3 3505-6718

We take all privacy inquiries seriously and will respond to your request within a reasonable timeframe, typically within 30 days.