Privacy Policy

Effective Date: December 1, 2025

The operator of Rein (“Operator”) establishes this Privacy Policy (“Policy”) regarding the handling of Users’ personal information (“Personal Information”) in the Rein application and related services (“Service”).

Article 1 (Definition of Personal Information)

“Personal Information” (also referred to as “Personal Data”) refers to information as defined in Japan’s Act on the Protection of Personal Information (“APPI”), including any information related to a living individual that can identify a specific person, such as name, date of birth, address, phone number, or contact details. It also includes personal identifiers such as biometric data (facial, fingerprint, or voiceprint data) and personal identification numbers such as health insurance numbers.
For clarity, information related to an individual obtained through cookies, device identifiers, or browsing history (“personal-related information”) may constitute Personal Information if it can identify, or can be used in combination with other information to identify, a specific individual.

Article 2 (Method of Collection)

The Operator may collect Personal Information such as name, email address, contact details, and—if payment is required—payment information (e.g., credit card number) when Users register for the Service.
The Operator may also collect transaction or payment information between Users and third parties (such as partners, advertisers, or payment processors).

Article 3 (Purpose of Use)

  1. The Operator collects and uses Personal Information for the following purposes:
    • To provide and operate the Service.
    • To respond to User inquiries (including identity verification).
    • To send notices regarding new features, updates, campaigns, or announcements.
    • To contact Users regarding maintenance or important updates.
    • To prevent and restrict fraudulent or prohibited use.
    • To allow Users to view, modify, or delete their registration information, and to check their usage status.
    • To process billing and payments for paid services.
    • For other purposes related to the above.
  2. For the avoidance of doubt, the Operator will not provide Users’ Personal Information to third parties for the purpose of AI training or model development.

Article 4 (Change of Purpose of Use)

The Operator may change the purpose of use if it is reasonably deemed to be related to the original purpose.
The revised purpose will be announced or published by the Operator.

Article 5 (Provision of Personal Information to Third Parties)

  1. The Operator will not provide Personal Information to any third party without prior consent of the User, except in the following cases:
    • When necessary to protect human life, body, or property and it is difficult to obtain consent.
    • When particularly necessary for public health or the sound upbringing of children and it is difficult to obtain consent.
    • When required by a national or local authority to cooperate in executing legal duties, and obtaining consent may hinder the execution of such duties.
    • When the following have been announced or notified to the Personal Information Protection Commission:
      • That third-party provision is included in the purpose of use.
      • The items of data to be provided.
      • The method or means of provision.
      • That the User may request cessation of such provision.
      • How Users can request cessation of provision.
    • Personal-related information (e.g., cookies or browsing history) will not be provided to third parties for use in combination with other information to identify an individual without obtaining the User’s prior consent, unless permitted by applicable law.
  2. Notwithstanding the above, the following cases are not considered “third-party provision”:
    • When outsourcing operations to achieve the purpose of use.
    • When Personal Information is transferred due to business succession such as merger.
    • When shared use occurs with specific parties, provided that the scope, items, purpose, and responsible entity are made easily accessible in advance.
  3. The Operator does not sell Users’ Personal Information without consent.

Article 6 (Disclosure of Personal Information)

  1. Upon request, the Operator will disclose the relevant Personal Information without delay, except in the following cases. In such cases, the Operator will notify the reason:
    • If disclosure may harm the life, body, property, or other rights or interests of the User or a third party.
    • If disclosure may significantly hinder the proper execution of the Operator’s business.
    • If it violates laws or regulations.
  2. A handling fee may be charged in accordance with applicable laws, including any maximum amounts or exemptions permitted by such laws.
  3. As a rule, non-personal information such as logs or characteristics data will not be disclosed.

Article 7 (Correction and Deletion of Personal Information)

  1. Users may request correction, addition, or deletion (“Correction, etc.”) of their Personal Information if it is inaccurate.
  2. The Operator will make the correction promptly if deemed necessary.
  3. The Operator will notify the User when the correction has been made or denied.

Article 8 (Suspension of Use, etc.)

  1. Users may request suspension or deletion (“Suspension, etc.”) of Personal Information if it has been used beyond the stated purpose or acquired by improper means.
  2. The Operator will investigate and, if necessary, take prompt action.
  3. The Operator will notify the User when Suspension, etc., has been implemented or denied.
  4. If Suspension, etc., requires excessive cost or is otherwise difficult, alternative measures shall be taken to protect Users’ rights and interests.

Article 9 (Report and Notification in Case of Data Breach)

  1. If sensitive Personal Information is involved, if property damage may occur, if unauthorized access is suspected, or if more than 1,000 individuals are affected, the Operator will report the incident to the Personal Information Protection Commission and notify affected Users.
  2. A preliminary report will be filed promptly, and a full report will follow within 30 days (or within 60 days for malicious cases). Users will also be notified without undue delay.
  3. If information is strongly encrypted and unlikely to harm User rights, such cases may be excluded from notification requirements.

Article 10 (Amendment of the Privacy Policy)

  1. Unless otherwise required by law, the Operator may change this Policy without prior notice to Users.
  2. The revised Policy will take effect upon publication within the Service.

Article 11 (Supplement for U.S. Residents)

  1. Under the California Consumer Privacy Act and its amendments (CCPA/CPRA), Users have the right to: (a) know/access their Personal Information; (b) delete their Personal Information; (c) correct inaccurate Personal Information; (d) opt out of the sale or sharing of Personal Information; and (e) limit the use and disclosure of sensitive Personal Information, subject to applicable exceptions.
  2. The Service provides a process equivalent to “Do Not Sell or Share My Personal Information.”
  3. The Operator will honor legally recognized opt-out preference signals (where required) and comply with other applicable U.S. state privacy laws.

Article 12 (Priority of Regional Supplements)

If this Policy conflicts with any applicable regional supplement, the supplement shall prevail for Users residing in that region.

Article 13 (Contact Information)

For inquiries regarding this Policy, please contact the Operator as follows.
*Physical address details will be disclosed to verified Users upon reasonable request.

Contact: Rein Support
Email: info@reinics.com

End of Privacy Policy