HojinrokuHJR.jp

Privacy Policy

The HJR.jp operating team (the "operator") sets out the following policy for handling user information in the company information search system "Hojinroku" (the "service").

1. Information collected

The operator may collect the following information within the scope necessary to provide the service.

  • Account registration and login information: email address, authentication ID, login time, authentication status
  • Inquiry information: name, company, department, email address, inquiry content, response history
  • User-submitted materials: registration certificates, company materials, application materials, correction request materials, and other materials voluntarily sent or uploaded by users
  • Usage information: viewed pages, search type, hashed search terms, clicks, screen size, language settings, referrer, access time
  • Technical information: IP address, user agent, device and browser information, Cookie, localStorage, sessionStorage, anonymous ID, session ID
  • Information needed for abuse prevention: access frequency, request headers, suspected scraping signals, error logs

2. Purposes of use

  • Providing the service, identity confirmation, account management, and maintaining login status
  • Responding to inquiries, submitted materials, correction requests, deletion requests, and disclosure requests
  • Confirming, organizing, improving, and updating company information, public data, and submitted materials
  • Improving search experience, display content, features, performance, and security
  • Detecting and preventing unauthorized access, excessive automated acquisition, spam, terms violations, and service failures
  • Statistical analysis, product improvement, research and development, and operational communications
  • Responding to laws, guidelines, courts, and administrative authorities

3. Third-party services and external transmission

The operator may use external services for service delivery, authentication, analytics, error monitoring, and related purposes. For details about transmitted information, recipients, and purposes, see the Cookie and External Transmission Policy.

  • Supabase: account registration, login, email authentication, session management
  • PostHog: access analytics and product usage analysis
  • Sentry: error monitoring, incident investigation, quality improvement
  • Hosting and infrastructure providers: delivery, security, and log management

4. Third-party disclosure and outsourcing

The operator does not provide personal information to third parties except where required by law, with user consent, where necessary to protect life, body, or property, or where handling is entrusted to a contractor within the necessary scope. When entrusting personal information to contractors, the operator endeavors to exercise necessary and appropriate supervision.

5. Retention period

Collected information is retained for the period necessary to achieve the purposes of use. Account information is retained while the account continues and for a reasonable period after withdrawal; inquiry history is generally retained for three years after completion; access logs and analytics logs are generally retained for up to 26 months. Information may be retained longer where necessary for legal response, dispute response, abuse prevention, or backup management.

6. Public company and public person information

Company information, officer information, licenses, financials, enforcement actions, litigation, procurement, political and PEP-related information, and similar data published by the service are organized and integrated from public sources such as the National Tax Agency, METI, FSA, ministries, local governments, exchanges, and international organizations. Even for public information, if there are errors, update delays, display restrictions, source discontinuation, or a legal basis for deletion, the operator will review and consider a response.

7. Requests for disclosure, correction, suspension, deletion, and related actions

Users may request disclosure, correction, addition, deletion, suspension of use, erasure, or suspension of third-party disclosure of their personal information under applicable law. The operator may request necessary information for identity verification. For company information based on public data, responses are considered in light of source corrections, legal publication obligations, public interest, and the legitimate interests of a search service.

8. Security controls

The operator endeavors to take reasonable security measures, including access control, authentication control, encrypted communications, log monitoring, and contractor management, to prevent unauthorized access, leakage, loss, or damage to personal information.

9. Policy changes

The operator may change this policy in response to legal changes, service changes, changes in external services, and similar reasons. Important changes will be announced on this website.

10. Contact

For inquiries about this policy, handling of personal information, disclosure, correction, deletion, and related requests, contact us through the contact page or at japanshirabe@gmail.com.

Last updated: May 26, 2026