Privacy Policy for Sing Out from Japan

1. Introduction

At Sing Out from Japan (“we,” “our,” or “us”), accessible at singoutfromjapan.com, we are fully committed to protecting your personal data, safeguarding your privacy, and ensuring transparency about how your information is collected, used, and retained. We respect the rights of individuals under applicable privacy laws, including but not limited to the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), and uphold the highest standards of privacy and data security.

2. Scope of Policy and Role as Data Controller

This Privacy Policy applies to all personal data collected through your use of our website—singoutfromjapan.com—and associated services, whether accessed via web, mobile, or other platforms. We act as the “data controller” for the purposes of the GDPR, meaning we determine the purposes and means of processing your personal data.

By using our website, you acknowledge and consent to the practices described in this Privacy Policy.

3. Categories of Data Processed

We collect and process the following categories of data:

a) Usage Data:
This includes information such as your IP address, browser type and version, time zone setting, browser plug-in types, operating system, referring URLs, device identifiers, time spent on pages, and navigation patterns.

b) Account Data:
When you create an account or make a purchase, we may collect your name, postal address, email address, phone number, and login credentials.

c) Profile Data:
Information related to your preferences, past interactions, product purchases, feedback, and behavior while using singoutfromjapan.com.

d) Communication Data:
Includes communications exchanged with customer support, inquiry submissions, and any feedback or contact history retained for service consistency and issue resolution.

e) Technical Data:
Device-related technical data such as hardware models, operating systems, browser types, mobile network information, and system settings.

f) Transaction Data:
Includes details about payments and deliveries such as order history, shipping addresses, billing details, and payment confirmations.

g) Preference Data:
Data concerning your consent to marketing communications, language preferences, and product interest signals based on site interaction and subscription preferences.

4. Legal Bases for Processing

We process your personal data only where permitted under applicable law:

– Consent: When you voluntarily provide your information or opt into marketing communications.
– Contractual Necessity: When processing is necessary for the performance of a contract (e.g., fulfilling an order).
– Legal Obligation: When necessary for compliance with a legal obligation.
– Legitimate Interest: Where processing is required for legitimate business purposes, except where such interests are overridden by your rights and freedoms.

We do not sell personal data to third parties.

5. Your Rights Under GDPR and CCPA

Under applicable legislation, you have the following rights:

– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You can request correction of inaccurate or incomplete data.
– Right to Erasure: You can ask us to delete your data, subject to applicable legal obligations.
– Right to Restriction: You may request we restrict processing under certain circumstances.
– Right to Data Portability: You may request your data in a structured, commonly used, and machine-readable format for transfer to another service.
– Right to Object: You can object to certain forms of processing based on legitimate interest or direct marketing.

To exercise any of these rights, please contact us at [email protected]. Identity verification may be required.

6. Security Measures

We implement appropriate technical and organizational safeguards to protect your data, including:

– End-to-end encryption of data in transit and at rest.
– Role-based access control with restricted internal data access.
– Frequent data backups to prevent loss.
– Staff training and internal confidentiality agreements.
– Regular system audits and vulnerability assessments.

While we strive to secure your data, no data transmission or storage system is completely infallible.

7. International Data Transfers

Where data is transferred outside the European Economic Area (EEA) or other jurisdictions with strict data protection laws, we ensure appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms are used to maintain the security and legality of the transfer.

8. Data Retention

We retain personal data only as long as necessary to fulfill the purposes for which it was collected or to comply with applicable legal, accounting, or reporting requirements. Retention periods include:

– Account Data: Retained for the duration of your account and up to 5 years post-deactivation.
– Transaction Data: Maintained for at least 7 years to comply with tax and record-keeping laws.
– Communication Data: Retained for up to 3 years following last contact.
– Usage and Technical Data: Retained for up to 2 years for analysis and improvement purposes.
– Marketing Preferences: Retained until consent is revoked.

9. Cookie Policy

Singoutfromjapan.com uses cookies and similar technologies to enhance user experience, analyze site performance, and deliver personalized content. Cookies fall under the following categories:

– Essential Cookies: Strictly necessary for site functionality and security.
– Functional Cookies: Enables enhanced usability (e.g., saving language or region preferences).
– Analytics Cookies: Collect anonymous information to improve site performance and customer experience.
– Performance Cookies: Used to monitor web traffic and user engagement metrics.

10. Cookie Management and Compliance

In compliance with GDPR and CCPA, you may manage your cookie preferences through our cookie consent banner and your browser settings. You can choose to accept or reject different categories of cookies, except those strictly necessary for website functionality.

CCPA Rights for California Residents:
Users residing in California have additional rights to:

– Request disclosure of the categories and sources of data collected.
– Know whether personal data has been sold or shared and to whom.
– Opt-out of data sale or sharing, though Sing Out from Japan does not sell personal data.
– Exercise these rights without discrimination.

California residents may contact [email protected] to submit these requests.

11. Special Protections for Children

Our website and services are not intended for children under the age of 13. We do not knowingly collect or solicit personal data from individuals under 13. If you are a parent or guardian and believe your child has provided personal data to us, please contact us at [email protected], and we will delete such data promptly.

12. Policy Updates

We may update this Privacy Policy from time to time to reflect changes in laws, best practices, or the features of singoutfromjapan.com. Updates will be posted on our website, and we may notify you via email or on-site notifications. Continued use of the website after such changes constitutes your acceptance of the revised terms.

13. Contact

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your data, please contact us at:

Email: [email protected]

We are committed to addressing and resolving your privacy concerns in a timely and transparent manner.

Sing Out from Japan prioritizes your privacy. We are committed to full compliance with all applicable data protection regulations, and we welcome your feedback or inquiries regarding your privacy rights.