GDPR隱私政策

B) Outside ORIX Group
We may also transfer Personal Data to third parties outside our Company and the ORIX Group, including our (IT) systems, cloud service and database providers, hotel management companies, outside contractors and professionals (including accounting firms, tax firms and law firms), to achieve the purposes set out above, to the extent they need it to carry out the instructions we have given to them or the agreements we have entered into with them.
As data processors or joint controllers, the above third parties enter into an agreement with us to process the Personal Data in compliance with applicable law (including GDPR).
Where required, we may also transfer your personal data to:
・ Any third party to whom we assign or novate any of our rights or obligations under a relevant agreement; and
・ Any national or international governmental or judicial authority, where we are required to do so by applicable law or regulation or at their request, in compliance with applicable law.

C) Outside the EEA
The Personal Data may be transferred to entities in countries or jurisdictions outside the EEA, such as Japan, if required for the purposes described above. Please note that such countries or jurisdictions may not have the same data protection laws as the EEA and that they may not afford many of the rights conferred upon you in the EEA. We will ensure that any such international transfers are made subject to appropriate and suitable safeguards as required by GDPR or other relevant laws. When doing so, we will comply with applicable data protection requirements and take appropriate safeguards to ensure the security and integrity of the Personal Data. This may include entry into the relevant EU standard contractual clauses as approved by the EU Commission prior to such transfer to ensure the required level of protection for the transferred Personal Data. You may request additional information in this respect.

3. Your Rights as a Data Subject
Within the limits and under the conditions set forth in the law (including GDPR), you have the following rights: 
・ To access your Personal Data as processed by us and obtain a copy thereof;
・ To request any correction or update thereof;
・ To request the erasure of your Personal Data;
・ To request the restriction of the processing of your Personal Data;
・ To withdraw your consent where we based our processing of your Personal Data on your consent (without such withdrawal affecting the lawfulness of processing prior thereto);
・ To object to the processing of your Personal Data;
・ To request the portability of your Personal Data (i.e. to obtain the Personal Data you have provided to us in a structured, commonly used and machine-readable format and/or to request the transmission of such Personal Data to a third party, without hindrance from us and subject to your own confidentiality obligations).
When we receive a request based on the rights specified above, we will conduct any necessary investigation without undue delay and provide you or a nominated third party with the Personal Data or respond to such rights without undue delay.
Please note that you may raise an objection to the competent data protection authorities having jurisdiction over us or in the location of your usual residence or place of work with regard to the processing of your Personal Data or of an alleged infringement of GDPR.

4. A minor’s consent
Your guardian’s consent or permission must be obtained in the event that you are under the age of 16 and use our service and consent to this Privacy Policy.

5. Inquiries
If you have any questions or concerns regarding this Privacy Policy or our processing of Personal Data, or any requests concerning the exercise of your rights as a Data Subject described in Section 3 above, please contact us at the following:
 [The name of the company] Blue Wave Corporation
 [Address] Nippon Life Hamamatsucho Crea Tower.14th Floor, 2-3-1, Hamamatsu-cho, Minato-ku, Tokyo
[Email address] privacy@ore-group.jp
[Phone number] +81-3-6890-9100

Representative
The contact information for our representative is as follows:
[Representative’s Name] ORIX Corporation Europe N.V.
[Address] Weena 850, 3014 DA Rotterdam, The Netherlands
[Email Address] privacy @orixnv.com


6. Revision of this Privacy Policy
We may modify this Privacy Policy when necessary. We will announce the revised Privacy Policy on our website when a revision is made. Please make sure to regularly check the contents of this Privacy Policy.
After the Policy is revised, you shall be deemed to have agreed to the revised Policy when you use our services or view this Privacy Policy.
This Privacy Policy is written in the English language and may be translated into other languages. In the event of any inconsistency between the English version and the translated version of this Privacy Policy, the English version shall prevail.
Effective date:2020/01/09
Blue Wave Corporation /CEO:Takaaki Nitanai