Privacy Policy : CRIM Electronics

CRIM Electronics co., Ltd. Privacy Policy

PRIVACY POLICY: Effective Date: Sep 1, 2023.

General

While visiting an CRIM Electronics co., Ltd. ("CRIM") site, we may ask you to register and/or provide information that personally identifies you ("Personal Information") for purposes of interacting with our site, including, for example, when you ask for information, enter a contest, order subscriptions, or download material. CRIM intends to give you as much control as possible over your Personal Information. If you choose to provide CRIM with your Personal Information via an CRIM owned site, it is our intent to let you know how we will use your Personal Information. CRIM uses your Personal Information to help you quickly find goods, services or information on the site. We track the domains from which this site is visited and use that data to analyze for trends and statistics, and then discard it. If you choose not to have your Personal Information used as a basis for further contact with you by CRIM or one of its business partners, you may "opt out." If you choose not to give us your Personal Information, you can still use most of this site. You merely will not be able to access areas that require registration. Additionally, if you do not want CRIM to send you e-mail or postal mail regarding CRIM or its services, you may "opt out" at the time you give us your Personal Information.

Links to Other Materials

If any link is offered connecting to a third party website, it is as an accommodation to the respective third party site owner and without charge. Sites linked to and from this site are not necessarily under the control of CRIM and CRIM shall have no responsibilities or liabilities whatsoever for the content or privacy practices of any such linked site or any link or linking program at any time. CRIM does not necessarily endorse companies (or related products or services) to or from which this site is linked. If you decide to access any of the third party sites linked to this site, you do so entirely at your own risk. CRIM hereby disclaims any rights to trademarks, service marks, tradenames, logos, copyrights, patents, domain names or other intellectual property interests of third parties.

There is a technology called "cookies" which can be used to provide you with tailored information from a website. A cookie is an element of data that a website can send to your browser, which may then store it on your system. Some CRIM pages may use cookies so that we may better serve you when you return to our site. You can set your browser to notify you when you receive a cookie, giving you the chance to decide whether to accept it.

Site Technologies

CRIM does not provide the technologies used to build its site, and therefore neither recommends nor endorses the same. Any information regarding identified technologies, their capabilities, limitations, applications, etc., should be sought directly from their manufacturers. CRIM hereby disclaims any rights to trademarks, service marks, tradenames, logos, copyrights, patents, domain names or other intellectual property interests of third parties.

CRIM Electronics co., Ltd. Global Data Privacy Policy

Global Data Privacy Policy: Effective Date: Sep 1, 2023.

1 Policy Statement

CRIM is committed to protecting the privacy and confidentiality of Personal Information about its employees, customers, business partners and other identifiable individuals. CRIM’s policies, guidelines and actions support this commitment to protecting Personal Information. Each employee bears a personal responsibility for complying with this Policy in the fulfillment of their responsibilities at CRIM.

2 Scope

This Policy sets the minimum standard and shall guide all CRIM employees and Agents even if local law is less restrictive. Supplemental policies and practices will be developed as needed to meet the local legal or departmental requirements. Supplemental policies and practices may provide for more strict or specific privacy and protection standards than are set forth in this Policy.

3 Policy Details

3.1CRIM respects the privacy of its employees and third parties such as customers, business partners, vendors, service providers, suppliers, former employees and candidates for employment and recognizes the need for appropriate protection and management of Personal Information. CRIM is guided by the following principles in Processing Personal Information:
- Notice
- Choice
- Accountability for onward transfer
- Security
- Data integrity and purpose limitation
- Access
- Recourse, Enforcement and Liability
3.2Notice. When collecting Personal Information directly from individuals, CRIM strives to provide clear and appropriate notice about the:
- Purposes for which it collects and uses their Personal Information,
- Types of non-Agent third parties to which CRIM may disclose that information, and
- Choices and means, if any, CRIM offers individuals for limiting the use and disclosure of their Personal Information.
3.3Choice. Generally, CRIM offers individuals a choice regarding how we Process Personal Information, including the opportunity to choose to opt-out of further Processing or, in certain circumstances, to opt-in. However, explicit consent from individuals is not required when Processing Personal Information for:
- Purposes consistent with the purpose for which it was originally collected or subsequently authorized by the individual,
- Purposes necessary to carry out a transaction relationship,
- Purposes necessary to comply with legal requirements, or
- Disclosure to an Agent.
3.4Accountability for Onward Transfer. In regard to the transfer of Personal Information to either an Agent or Controller, CRIM strives to take reasonable and appropriate steps to:
- Transfer such Personal Information only for specified purposes and limit the Agent or Controller’s use of that information for those specified purposes,
- Obligate the Agent or Controller to provide at least the same level of privacy protection as is required by this Policy,
- Help ensure that the Agent or Controller effectively Processes the Personal Information in a manner consistent with its obligations under this Policy,
- Require the Agent or Controller to notify CRIM if the Agent or Controller determines it can no longer meet its obligation to provide the same level of protection as is required by this Policy, and
- Upon notice from the Agent or Controller, take further steps to help stop and remediate any unauthorized Processing.
3.5Security. CRIM takes reasonable and appropriate measures to protect Personal Information from loss, misuse and unauthorized access, disclosure, alteration and destruction, taking into due account the risks involved in the Processing and the nature of the Personal Information.
3.6Data Integrity and Purpose Limitation. CRIM will only Process Personal Information in a way that is compatible with the purpose for which it has been collected or subsequently authorized by the individual. CRIM shall take steps to help ensure that Personal Information is accurate, reliable, current and relevant to its intended use.
3.7Access. CRIM provides individuals with reasonable access to their Personal Information for purposes of correcting, amending or deleting that information where it is inaccurate or has been Processed in violation of the CRIM data privacy principles.
3.8Recourse, Enforcement and Liability. Violation of this Policy by an employee or contractor of CRIM will result in appropriate discipline up to and including termination. Violation by an Agent, Controller or other third party of this Policy or CRIM’s privacy requirements will result in the exercise of appropriate legal remedies available at law or in equity including termination for material breach of contract.

4 Purpose of Collecting and Use of Personal Information

CRIM may from time to time Process certain Personal Information from or about employees and third parties such as customers, business partners, vendors, service providers, suppliers, former employees and candidates for employment, including information recorded on various media as well as electronic data.

CRIM will use that Personal Information to provide customers, business partners, vendors, service partners and suppliers with information and services and to help CRIM personnel better understand the needs and interests of these customers, business partners, vendors, service partners and suppliers. Specifically, CRIM uses information to help complete a transaction or order, to facilitate communication, to market and sell products and services, to deliver products/services, to bill for purchased products/services, and to provide ongoing service and support. Occasionally CRIM personnel may use Personal Information to contact customers, business partners, vendors, service partners and suppliers to complete surveys that are used for marketing and quality assurance purposes.

CRIM may also share Personal Information with its business partners, vendors, service providers and suppliers to the extent needed to support the customers business needs. Suppliers are required to keep confidential Personal Information received from CRIM and shall not use it for any purpose other than as originally intended or subsequently authorized or permitted.

CRIM also collects Human Resources Data in connection with administration of its Human Resources programs and functions and for the purpose of communicating with its employees. These programs and functions may include compensation and benefit programs, employee development planning and review, performance appraisals, training, business travel expense and tuition reimbursement, identification cards, access to CRIM facilities and computer networks, employee profiles, internal employee directories, Human Resource record keeping, and other employment related purposes. CRIM also collects and uses Personal Information to consider candidates for employment opportunities within CRIM. Human Resources Data may be shared with third party vendors and service providers for the purpose of enabling the vendor or service provider to provide service and/or support to CRIM in connection with these Human Resources programs and functions. CRIM will not share Human Resources Data with third parties for non-employment related purposes. CRIM requires third parties receiving Personal Information to apply the same level of privacy protection as contained in this Policy and as required by applicable law.

5 Administration

5.1Roles and Responsibilities. Responsibility for compliance with this Policy rests with the heads of the individual functions, business units and departments together with any individual employees collecting, using or otherwise Processing Personal Information. Business unit, function and department heads, in coordination with the Legal Department, are responsible for implementing further standards, guidelines and procedures that uphold this Policy, and for assigning day-to-day responsibilities for privacy protection to specific personnel for enforcement and monitoring.
5.2Implementation. This Policy is meant to be implemented in conjunction with supplementary data privacy policies specific to a region, country or department, if required. These supplementary data privacy policies will account for differences in data protection requirements by jurisdiction or function and will specify individual roles and responsibilities. CRIM business units, functions or facilities will implement supplementary data privacy policies as required to be in compliance with applicable laws.
5.3Interpretation. In the event of any conflict between this Policy and any supplemental data privacy policy, this Policy will supersede the supplemental data privacy policy to the extent that the supplemental data privacy policy is less restrictive. Local data privacy policies may provide for stricter data privacy and protection standards than are set forth in this Policy. In the event local data privacy law provides for stricter data privacy and protection than this Policy, the local data privacy law will supersede this Policy in that jurisdiction to the extent necessary to comply with stricter local law.

6 Definitions

“Agent” means any third party that collects and/or uses Personal Information provided by CRIM to perform tasks on behalf of and under the instructions of CRIM.

“CRIM” is CRIM Electronics co., Ltd. and all of its subsidiaries and affiliates globally.

“Controller” means a person or organization which, alone or jointly with others, determines the purposes and means of the Processing of Personal Information.

“Human Resource Data” means Personal information concerning CRIM employees or prospective employees.

An “Identified” or “Identifiable” individual is one who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to the person’s physical, physiological, mental, economic, cultural or social identity.

“Personal Information” is information or data about an “Identified” or “Identifiable” (see definition above) individual. It does not include information that is anonymous, aggregated or in circumstances where the individual is not readily identifiable.

“Policy” means this Global Data Privacy Policy, as revised.

“Processing” or “Process” means any operation or set of operations which is performed on Personal Information or on sets of Personal Information, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

7 References

CRIM Code of Conduct
Global Information Security Policy
Supplemental local and departmental policies, procedures and standards on data privacy