PRIVACY POLICY
Privacy
LeTech Corporation (hereinafter "the Company") establishes the following Privacy Policy (hereinafter "this Policy") regarding the handling of personal information in connection with our hotel accommodations "HOTEL LEGALIE" and this website (hotel-legalie.jp) (collectively, "the Services").
1. Basic Policy
As a company belonging to the Sumitomo Forestry Group, the Company recognizes the importance and social responsibility of handling customers' personal information, and complies with the Act on the Protection of Personal Information ("Personal Information Protection Act") and other relevant laws and guidelines. We will handle personal information appropriately in accordance with this Policy.
The Company does not jointly use customers' personal information with other companies in the Sumitomo Forestry Group. We acquire, manage, and use personal information solely as LeTech Corporation.
2. Definition of Personal Information
In this Policy, "personal information" refers to personal information as defined in Article 2, Paragraph 1 of the Personal Information Protection Act, i.e., information about a living individual that can identify a specific individual through descriptions such as name, date of birth, etc. (including information that can be easily collated with other information to identify a specific individual), or information containing personal identification codes.
3. Information We Collect
(1) Reservation and Accommodation Information
- Name, address, phone number, email, gender, date of birth, nationality
- Stay dates, number of guests, companion information, purpose of stay
- Guest registry information as required by Article 6 of the Hotel Business Act
(2) Identity Verification Information
- Images of identification documents such as passport, driver's license, etc.
Acquired and stored in accordance with Article 4-2 of the Enforcement Regulations of the Hotel Business Act and other relevant laws.
(3) Payment Information
- Credit card information, payment history
For payments processed through payment agencies, the Company may not retain this information.
(4) Inquiry and Support Information
- Inquiry contents, requests, call recording contents
- Communications via email, chat, SNS, etc.
(5) Facility Usage Information
- Security camera footage (installed at facility entrances, common areas, lobby, etc., with notice posted at installation locations. **Retention period: 30 days**)
- Smart lock unlock logs, self-check-in tablet operation logs (**Retention period: 90 days**)
- Room entry/exit times, information on facility usage
(6) Website Browsing Information
- IP address, browser information (User-Agent), device information
- Cookies, advertising IDs (IDFA, AAID)
- Access date and time, viewed pages, referrer information
4. Purpose of Use
The Company uses the personal information collected for the following purposes.
- Reservation processing, fulfillment of accommodation contracts, identity verification, self-check-in authentication
- Response to inquiries and requests, emergency contact
- Compliance with relevant laws including the Hotel Business Act and the Immigration Control and Refugee Recognition Act
- Facility safety management (prevention of unauthorized use, security, incident response)
- Payment processing, issuance of invoices and receipts
- Communication of campaigns, promotions, and email newsletters
- Customer surveys, analysis for service improvement
- Creation of statistical information (processed in a form that cannot identify individuals)
- Other business operations incidental to the above purposes
5. Provision to Third Parties
The Company will not provide personal information to third parties without the consent of the customer. However, this does not apply in the following cases.
- When required by law
- When necessary for the protection of life, body, or property, and obtaining the customer's consent is difficult
- When particularly necessary for improving public health or promoting the sound upbringing of children
- When cooperation is required for national or local government agencies or their commissioned parties to perform statutory duties
- Other cases permitted under the Personal Information Protection Act or other laws
6. Outsourcing
The Company may outsource all or part of the handling of personal information to the following service providers within the scope necessary to achieve the purposes of use.
- Reservation management system operators
- Payment processing companies
- Cleaning and facility management contractors
- Call center and customer support contractors
- Data analytics and marketing contractors
When outsourcing, the Company establishes appropriate selection criteria, concludes confidentiality agreements with contractors, and conducts necessary and appropriate supervision.
7. Security Measures
The Company implements the following measures to prevent leakage, loss, or damage of customers' personal information, and for other security management purposes.
(1) Organizational measures
Appointment of a personal information protection manager, establishment of regulations and procedures, regular audits
(2) Human resource measures
Regular training for employees, confidentiality pledge agreements
(3) Physical measures
Access control to areas handling personal information, prevention of theft or loss of documents and electronic media
(4) Technical measures
Access control, unauthorized access countermeasures, encryption, log management, antivirus software implementation
8. Rights of Overseas Residents (Simplified Compliance)
(1) For EU/EEA Residents (GDPR Simplified Compliance): Under the EU General Data Protection Regulation (GDPR), customers have the right to access, rectify, erase ("right to be forgotten"), restrict processing, data portability, and object to processing of their personal information. For exercising these rights, please contact the office indicated in Article 11 of this Policy.
(2) For California Residents (CCPA Simplified Compliance): The Company does not "sell" customers' personal information to third parties for monetary consideration.
(3) For Mainland China Residents (PIPL Simplified Compliance): When providing customers' personal information outside of China, the Company will obtain necessary consent and provide notifications in accordance with the Personal Information Protection Law of the People's Republic of China.
9. Children's Privacy
The Services are not primarily intended for individuals under 16 years of age. If customers under 16 use the Services, they must obtain consent from their parent or guardian. The Company does not intentionally collect personal information from individuals under 16 without parental consent.
10. Cookies and Access Analytics
This website uses cookies and similar technologies to improve usability and services, and may use access analytics tools such as Google Analytics, as well as advertising services such as Google Ads and Meta Pixel.
These services anonymously collect customers' browsing and behavior history. Customers can refuse cookies or stop ad delivery by using browser settings or each service's opt-out feature.
- Google Analytics opt-out: https://tools.google.com/dlpage/gaoptout
- Google ad settings: https://adssettings.google.com/
11. Disclosure, Correction, and Suspension of Use
Customers may request disclosure, correction, addition, deletion, suspension of use, or suspension of provision to third parties of their personal information held by the Company. For these requests, please contact the office indicated in Article 12 of this Policy.
For requests, customers may be asked to follow procedures specified by the Company and submit documents for identity verification. The Company will respond within a reasonable period in accordance with applicable laws.
12. Contact Information
For inquiries about personal information, requests for disclosure, or other comments and requests, please contact the following.
LeTech Corporation Personal Information Inquiry Desk
10F Nippon Life Umeda Building, 3-3 Doyamacho, Kita-ku, Osaka 530-0027, Japan
Phone: +81-6-6360-9791
Email: privacy@hotel-legalie.jp
Hours: Weekdays 10:00–18:00 (excluding weekends, holidays, and year-end/New Year)
13. Revisions to the Privacy Policy
The Company may revise this Policy due to amendments to laws, changes in our business operations, or other necessary reasons. In the case of important changes, we will notify customers through publication on this website or by email. The revised Policy will become effective from the time it is posted on this website.
Last revised: May 1, 2026
Last updated: May 1, 2026
Effective: May 1, 2026
This Policy is made in Japanese. The Japanese version of this Policy shall be the authentic and binding version. The translations (English, Korean, Simplified Chinese, Traditional Chinese) are provided for reference and convenience. In case of any discrepancy between the Japanese version and any translation, the Japanese version shall prevail.