Privacy Policy

IMD Inc. (the “Company”) recognizes the importance of protecting all personal information handled by the Company as a social responsibility, and complies with applicable laws and regulations related to personal information as well as other relevant rules and guidelines, in order to protect individuals’ rights.

In addition, in order to implement the policies set forth below, the Company will establish a personal information protection management system and, while continuously monitoring trends in the latest IT technologies, changes in social requirements, and changes in the business environment, will work across the Company to continually improve this system.

Basic Policy on Personal Information Protection

• The Company appropriately acquires, uses, and provides personal information handled in connection with employment and personnel management of employees, and will not handle such personal information beyond the scope necessary to achieve the specified purposes of use. The Company will also implement measures to ensure this.
• The Company complies with laws and regulations concerning the handling of personal information, as well as national guidelines and other standards.
• The Company will take reasonable security measures against risks such as leakage, loss, or damage of personal information, invest management resources appropriate to the actual state of the business, and continuously improve its security framework. In the unlikely event of an incident, the Company will promptly implement corrective actions.
• The Company will respond promptly and sincerely to complaints and inquiries regarding the handling of personal information.
• The Company will review and continually improve the personal information protection management system in a timely and appropriate manner, based on changes in the environment surrounding the Company and the actual circumstances.

Policy for Handling Personal Information and App Data

1. Data We Access (Data We Process)

In the app and services, we obtain the following information as identifiers:

• Email address
• An anonymized identifier (e.g., when using OAuth authentication)
• Device identifier used to access the service (if available)
• Nickname (if provided)

2. Purposes of Use

In the app and services, we use the collected data for the following purposes:

• User authentication (user identification and security)
• Notifications to users (we do not send advertisements to your email address)
• User display name within the service (mainly by nickname)

3. Data Sharing

We do not provide, share, or transfer personal information to any third party under any circumstances, whether free of charge or for a fee. We do not use it for advertising or analytics, either.

4. Data Protection and Storage

We handle collected data as follows:

• Industry-standard or stronger encryption
• Processed on Linux (we do not use Windows for processing)
• Multi-layer security for storage hosts, including VPN, access authentication, restricted personnel access, and automated monitoring
• Stored in designated databases and not handled as raw files
• Certain particularly important information is stored using a distributed encryption system for which a patent application is pending

5. Data Retention and Deletion

We retain data for as long as the user maintains an account associated with the relevant email address.

If the Company closes a user’s account, we retain the data as a backup for at least three (3) months, and then delete it thereafter.

If the user proactively requests deletion, complete deletion is possible by either of the following methods:

• Delete the account from within the app (immediate deletion; not recoverable)
• Contact support: https://support.imd.jp/form/

6. Handling of Notification Content Displayed on the User’s Smartphone

With the user’s consent, the app may obtain the content of notifications displayed on the user’s smartphone. The obtained notification content is filtered within the Android app based on rules configured by the user in advance. Only items that need to be forwarded after filtering are sent to the cloud, and the cloud then forwards them to the user’s designated destination such as an Alexa device or email.

We manage notification content under strict controls so that no one other than the user can view it. We never sell, resell, share, or use notification content for advertising purposes. We use notification content only for the operation of the app.

• We use notification content only for the operation of the app and never for any other purpose.
• We do not sell, resell, share with third parties, or use notification content for advertising purposes.
• We treat notification content as personal information and, in principle, do not store it, except for retaining limited portions for a short period as operational logs for management purposes.