Handling of Personal Information

• Cdrive Inc. (hereinafter referred to as "the Company") recognizes the importance of personal information and handles it appropriately based on the following policy.
• 1. The Company uses personal information only within the scope of the purpose of use specified at the time of acquisition. If it becomes necessary to use the information beyond this purpose, we will notify the individual in advance and obtain their consent before using it.
• 2. Acquired personal information will not be provided to a third party, except when there is a legitimate reason, such as with the individual's consent, based on laws and regulations, when necessary for the protection of life or property, or when provided to a business contractor.
• 3. We will take appropriate and strict security management measures to prevent unauthorized access, leakage, loss, destruction, or alteration of personal information.
• 4. If an individual requests disclosure of their personal information held by the Company, we will follow our prescribed procedures, verify their identity, and disclose the information within a reasonable scope.
• 5. If the disclosed information contains any errors, we will appropriately correct or delete it.
• 6. The Company will comply with all laws, guidelines, and other norms regarding the handling of personal information, and will continuously review the development and operation of its internal systems.
• 7. To properly manage personal information, the Company will appoint the following person as the Personal Information Protection Manager and will strive for appropriate management and operation.

Personal Information Protection Manager (Department): General Affairs Department