Global Personal Data Protection Policy
of Konica Minolta Group
As a growing global company, being engaged in various business areas, We, Konica Minolta Group recognize that the confidence of our customers, business partners, officers and employees is our most valuable asset. Konica Minolta Group also recognizes that we are, not only to provide the best products and services, but also to meet the highest standards regarding compliance and social responsibility.
Konica Minolta Group is committed to respect the privacy of our customers, business partners, officers and employees and to protect the personal data of our customers, business partners, officers and employees.
Scope and applicability of this Policy
This policy applies to us, Konica Minolta, Inc. (“Konica Minolta”) and all of its affiliated companies (“Group Companies”) and our officers and employees. “Affiliated” in this instance means, that Konica Minolta may enforce the adoption of this Policy directly or indirectly, on the basis of voting majority, majority management representation or by agreement. Konica Minolta and Group Companies (“Konica Minolta Group”) establish and enforce internal rules such as regulations and procedures in accordance with this Policy.
This Policy sets forth the basic principles of Konica Minolta Group’s data protection and data security standards and ensures compliance with national and international data protection laws in force all over the world. Therefore it comprises the internationally accepted data protection principles, intending not to replace, but to supplement the respective national data protection and privacy laws (“National Legislation”). This means, that the content of this Policy has to be observed in the absence of a corresponding National Legislation or if a National Legislation provides lower requirements than this Policy. On the other hand, a National Legislation always takes precedence in case of a conflict with this Policy or if the National Legislation provides stricter requirements than this Policy.
This Policy extends to all processing of personal data. In countries where the data of legal entities are protected to the same extent as personal data, this Policy applies equally to data of legal entities. Anonymized data, e.g. for statistical evaluations or studies, is not subject to this Policy.
Konica Minolta Group’s principles for processing of personal data
Lawfulness, fairness and transparency
Personal data will be collected and processed in a lawful, fair and transparent manner to protect the individual rights of the data subjects.
Restriction to a specific purpose
Personal data will only be collected for specified explicit and legitimate purposes and will not be processed in a manner incompatible with those purposes.
Data accuracy / Data actuality
Personal data will be accurate and where necessary kept up to date. Konica Minolta Group will take every reasonable step to erase or rectify inaccuracies without delay.
Data economy / Data minimization
Personal data will be adequate, relevant and limited to what is necessary. Personal data will not be stored longer than necessary.
Rights of data subjects
Konica Minolta Group respects the rights of all data subjects including rights of access to their data, the right of restriction of processing or erasure, and the right of accuracy. Konica Minolta Group will provide clear and unambiguous information about how and why subjects’ data are collected and processed. Comments: Unification for “the right of ～”
Time limits for storage of personal data will be defined. Konica Minolta Group erases personal data that are no longer necessary in relation to the purposes for which they have been collected or in a case a given consent is withdrawn and no other legitimate purpose for processing applies.
Security of processing / Data security
Personal data will be processed securely. Appropriate to the risk, technical and organisational measures will be taken against unauthorised processing or alteration, and against loss or destruction or unauthorized disclosure of or access to personal data transmitted, stored or otherwise processed. Konica Minolta Group will ensure ongoing integrity, availability, confidentiality and authenticity. Konica Minolta Group will ensure resilience of our systems and services processing personal data. In the event of an incident Konica Minolta Group will have the ability to restore the availability and access to data in a timely manner.
Data protection by design and by default
Konica Minolta Group will implement appropriate technical and organisational measures for ensuring that, by default, only personal data that is necessary for each specific purpose of the processing is processed. The principle of Data Protection by design and by default will be followed during the development of new products.
There shall be accountability in all processing activities. Konica Minolta Group is responsible for and able to demonstrate compliance.
Konica Minolta Group’s data protection organisation
Each Konica Minolta Group company shall appoint a qualified person, who is responsible for the implementation and observance of the aforementioned principles.