PRIVACY NOTICE

Effective Date: 10/20/2022
Last Updated: 11/27/2023

Casio Computer Co. Ltd., a Japanese company whose registered office is located at 6-2, Hon-machi 1-chome, Shibuya-ku, Tokyo 151-8543, Japan (hereinafter "Casio", "we", "us" or "our") takes the protection of your personal data extremely seriously. This Privacy Notice ("Privacy Notice") describes how Casio processes and protects the individually identifiable information ("Personal Data") collected and processed through our website at ClassPad.net or when using our online educational services, ClassPad.net and its related mobile application (collectively, the "Services").
This Privacy Notice consists of a "Summary Notice" (see below at section A.) and a "Detailed Notice" (see below at section B.)

A. Summary Notice

Scope of applicability

This Privacy Notice exclusively applies to the collecting, using, storing, sharing and processing of your Personal Data when visiting, accessing, registering or using our Services. This Privacy Notice does not apply to the processing of your Personal Data when using CASIO ID ("CASIO ID"), the user account that allows you to centrally store and manage master data and functions as your access key across various offerings, solely and/or other services and apps we provide. Such processing is governed by other privacy notices, so when using CASIO ID with this Services, the privacy notice for CASIO ID applies to you additionally.
Please read the following carefully to understand how we will process your Personal Data provided via your use of the Services.

If you are in the European Economic Area ("EEA"), please see the additional notice for EEA residents.

How to contact Us

If you wish to exercise your data subject rights or if you have any other questions concerning this Privacy Notice, you can:

Contact us at https://secure.casio.jp/support/contact/privacy/en/form2.php; and
Contact our data protection officer ("DPO") at dataprotection@casio.co.jp.

If you are in the EEA, you can also contact our representative in the EEA and/or our EEA representative’s data protection officer at dataprotection@casio.de.

Processing of your Personal Data (categories of Personal Data)

We process the following of your Personal Data collected during your use of our Services: (i) your CASIO ID and data registered therewith, (ii) profile data registered by yourself with the Services, (iii) image, pictures, videos, audio, texts and any other information that you uploaded or made available on the Services; (iv) IP address, user agent, referrer, browser identifier, model name, OS version of your computer or mobile device in which the Services is installed (together with such device, collectively, "Devices"), (v) any information obtained from our cookies and the information about your activity and access to our Services; (vi) any information of your system setting data of Devices related to your consent about privacy and access media storage; and (vii) any other information relating to any individuals which you have provided us in any forms you may have submitted to us, or via other forms of interaction with you. For more details see 1. of the Detailed Notice or click here.

Processing purposes

We process your Personal Data for the following purposes: (i) providing the Services; (ii) preventing and detecting fraud or other security incidents and (iii) compliance with legal and safety obligations. We may use deidentified Personal Data to review analytics about user experience of our Services, demonstrate the effectiveness of our Services or improve the Services, other Casio educational products and services. For more details see 2. of the Detailed Notice or click here.

Legal justifications for the processing of your Personal Data

One of the key privacy law requirements is that any processing of Personal Data has to have a legal justification. Personal Data are processed only after you have given your consent, or if the processing of such data relies on another legal basis under the applicable laws. For more details and the matching of purposes and corresponding legal justifications see 2. of the Detailed Notice or click here.

Data transfers and recipients

We use third-party service providers to provide services and products on our behalf and we will share and transfer your Personal Data with them for the provision of the services and products. Within Casio and such recipients any access to your Personal Data in relation to your use of the Services is restricted to those individuals who have a 'need to know' in order to fulfil their job responsibilities.
We share your Personal Data with other entities of the Casio group in the country of your residence ("Affiliate Companies").

We also share your Personal Data with governmental authorities, courts, external advisors, and similar third parties that are public bodies as required or permitted by the applicable laws. For more details see 3. of the Detailed Notice or click here.

Cross-border data transfer

Some of the aforementioned recipients of your Personal Data are located or have relevant operations outside the country or region of your residence (namely, Japan, UK and US). By way of entering into appropriate data transfer agreements based on the clauses required by applicable law such as the Standard Contractual Clauses under the GDPR or by other adequate means, we have established that all such recipients located outside the country of your residence will provide an adequate level of protection for the Personal Data and that appropriate technical and organizational security measures are in place to protect Personal Data. Any onward transfer is subject to appropriate onward transfer requirements as required by applicable law. For details see 3. of the Detailed Notice or click here.

Implementation of security measures

We provide appropriate security measures to protect your Personal Data, including establishment of necessary rules to protect Personal Data, conducting trainings to our employees and taking other appropriate organizational, physical and technical security measures. For details of the security measures we take, please refer to 4. of the Detailed Notice or click here.

Retention periods for and deletion of your Personal Data

Your Personal Data are stored by Casio and/or our service providers, strictly to the extent necessary for the performance of our obligations to you respectively the performance of the service providers' obligations to us and strictly for the time necessary to achieve the purposes for which the Personal Data are processed, in accordance with applicable data protection laws. When we no longer need to process your Personal Data, the Personal Data will be deleted and erased from the systems and/or records and/or steps will be taken to properly anonymize the Personal Data so that you can no longer be identified from the Personal Data unless we need to keep your information: to comply with legal or regulatory obligations to which we are subject; and/or with regard to a judicial action. For more details see 5. of the Detailed Notice or click here.

Your statutory rights

You have a number of legal rights with regard to the processing of your Personal Data, each as per the conditions defined in applicable law. These rights may vary depending on where you are located and which data protection laws will apply to the relationship between you and us, but would typically include; (i) the right to have access; (ii) the right to obtain a copy of your Personal Data undergoing processing; (iii) the right to rectification; (iv) the right to erasure ("right to be forgotten"); (v) the right to restriction of processing; (vi) the right to data portability; (vii) the right to object; and (viii) the right to lodge a complaint with the competent data protection supervisory authority. You can exercise your rights by contacting us using the information described in 9. of the Detailed Notice or click here. Please refer any of your questions to https://secure.casio.jp/support/contact/privacy/en/form2.php. For more details see 6. of the Detailed Notice or click here.

Children’s Privacy

If you have not yet reached the age of legal majority but are at least 16 years of age or as defined by applicable laws and legal requirements ("Under Age"), certain parts of this Privacy Notice also apply to the parent, legal guardian of a child or the holder of parental responsibility over you ("Parent"). However, if you are between 13 and this age threshold to give a lawful consent, we will request your Parent consent to using the Services. If you are below the age of 13, we do not offer the Services to you. If we learn we have mistakenly or unintentionally collected or received Personal Data from a child without appropriate consent, we will delete it.

If you are Under Age, certain legal restrictions may apply and we may need the authorization of your Parent in order to process your Personal Data with regard to provision of the Services. Therefore, we collect the Personal Data with regard to your Parent.

Personal Data required to enter into a contract

You only have to provide Personal Data that is marked as mandatory in the respective forms during the use of the Services. Without such Personal Data, we cannot conclude the requested contract, or we will no longer be able to execute an existing contract and may have to terminate it.
Personal Data that are not marked as mandatory in the corresponding forms during the use of the Services do not have to be provided. For details, please refer to 8. of the Detailed Notice, or click here.

Changes of the Privacy Notice

This Privacy Notice is subject to change. You will be notified adequately of any such changes by publishing the changes on our website and/or inform you via email to your registered email address accordingly. Further, you will be notified adequately through further relevant privacy notices (e.g. for specific purposes) in case such is not covered by this Privacy Notice.

B. Detailed Notice

We are delighted about your interest in our Services. Your privacy is important to us. Hereafter we provide you with detailed information on dealing with your Personal Data on this Services.

This Detailed Notice applies to information you provide to us or that we collect automatically when you access, use, or register with our Services.

This Privacy Notice does not apply to the processing of your Personal Data using CASIO ID, information we collect when you visit or use our websites or otherwise, such as when you communicate with us through email, text, or other electronic means. Such processing is governed by other privacy policies, so when using CASIO ID with this Services, the privacy notice for CASIO ID (https://auth.casio-intl.com/casio_contents/terms/index.html) applies to you additionally. For information regarding how we collect and use information when you visit or use our websites, including web-based pages accessible through our Services, please refer to our respective website privacy notice.

1. Categories of Personal Data

2. How We Use Your Personal Data

2.1 The Purposes for which We Process these Categories of Personal Data

We use and process your Personal Data to provide you with and offer the Services, communicate with you or to conduct other business operations, such as using data to improve and personalize your experience.

2.2 Legal Basis of the Collection and Processing of your Personal Data

3. Data transfers and recipients and legal justification for such transfers

3.1 Recipients

Casio will transfer your Personal Data for the respective purposes and limited to the extent necessary to the recipients and categories of recipients listed below:

3.2 Cross-Border Data Transfers

4. Implementation of Security Measures

We have appropriate legal, organizational and technical security measures in place to prevent your Personal Data from being accidentally lost, used or accessed in an unauthorized way, improperly altered or disclosed. We also limit access to your Personal Data to employees, agents, contractors and other third parties who have a business need to know. They will only process your Personal Data on our instructions, and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspect Personal Data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

We also establish the necessary rules to protect Personal Data, conducting trainings to our employees and taking other appropriate organizational, physical and technical security measures. For details of the security measures we take, please contact us by using the contact details provided in paragraph 9.

5. Retention periods for and deletion of your Personal Data

6. Your statutory rights

Under the conditions set out under applicable data protection law, you may have the following rights, which you may exercise by contacting us as stated in paragraph 9 below:

7. Children’s Privacy

8. Personal Data required to enter into a contract

You only have to provide Personal Data that is required for us to establish and implement a business relationship with you, or that we are legally obligated to collect. Such Personal Data are marked as mandatory in the respective forms when using of the Services. Without such Personal Data, we cannot conclude the requested contract, or – should you remove such Personal Data at a later stage – We will no longer be able to execute an existing contract and may have to terminate it.

Personal Data that are not marked as mandatory in the corresponding forms when using for the Services do not have to be provided. With regard to the Services, we can provide our service and/or conclude a contract only if you provide us with your full name, your email address, language and your country.

9. How to contact Us, our data protection officer

If you have any questions concerning this Privacy Notice or would like to complain about our handling of your Personal Data or exercise any of your data subject rights (see paragraph 6 above), please contact us, our DPO by using one of the following contact details:

You may contact our data protection officer by:

If you are in the EEA, you can also contact our representative in the EEA and our EEA representative's data protection officer.

You can contact our representative in the EEA by using one of the following contact details:

You may contact our EEA representative's data protection officer by:

10. Changes to the Privacy Notice

This Privacy Notice may require an update from time to time – e.g., due to the implementation of new technologies or the introduction of new services or features. We reserve the right to change or supplement this Privacy Notice at any time. We will publish the changes on our website (https://classpad.net/note/privacy-policy/other/v1/en/privacy-policy.html) and/ or inform you via email to your registered email address accordingly.

NOTICE FOR UNITED STATES RESIDENTS

This Notice (hereinafter the "Notice") applies to United States residents and explains Casio’s collection, use, and disclosure of United States residents’ Personal Data. Please note that California residents have additional rights based on California law. For more information on those rights, please review the California Residents’ Rights section at the end of this Notice.

1. Information Casio Collects

Required Information. To create an account to use the Services, you will sign up for a CASIO ID, which will require you to: provide your name, country, date of birth, and email address; or register using a social media account.

Additional Information you Provide. You may provide additional Personal Data if you contact Casio for support or for some other reason. Casio will collect any additional Personal Data you provide.

Automatic Collection of Information. The Services use certain technologies – cookies, web beacons, clear GIFs, tracking pixels, and similar technologies (collectively, “tracking technologies”) – to collect information when you interact with our website. These types of technologies are used to remember user preferences, track your progress, maintain the security of our website and your account, and measure website analytics. The Services do not track your behavior on other websites and does not place any third-party tracking technologies on your device when you use the Services.

We acknowledge that all Personal Data (personally identifiable information about you), including students, teachers, administrators, and parents, is the property of you.

2. Use of Personal Data

Casio may use Personal Data collected in connection with the Services for the following purposes:

Casio may use deidentified Personal Data to: improve the Services or other Casio educational services; or demonstrate the effectiveness of the Services.

Casio does not use Personal Data collected in connection with the Services for any targeted advertising purposes or allow any targeted advertising on the Services. Casio does not create a profile of any student except to the extent such a profile is in furtherance of providing the Services.

3. Disclosure of Personal Data

Casio does not sell Personal Data collected in connection with the Services.

Casio may disclose Personal Data collected in connection with the Services in the following circumstances:

4. Your Choices with Respect to Your Personal Data

Correct Inaccurate Personal Data. You may correct information associated with your CASIO ID account by logging into your account and updating that information. If you believe the Services have any inaccurate Personal Data, please contact us using one of the ways described below in Section 9 (How to Contact Us).

Delete Personal Data. Upon your request, we will delete your Personal Data unless we are permitted or required by applicable law to retain it. If your Personal Data was collected or received by us in connection with a contract with a school or educational agency, we will delete your Personal Data upon the request of the school or agency.

Access Personal Data. Casio will provide access to your Personal Data upon receipt of a verified request from you if you are at least 16 years of age or from your parent or legal guardian if you are under 18 years of age.

5. Children’s Privacy

The Services are not aimed at or intended for children under age 13 and Casio does not knowingly collect or receive Personal Data from children under the age of 13. If we learn that we have inadvertently collected Personal Data relating to a child under the age of 13, we will delete that information from our records. If you believe we might have any information from or about a child under age 13, please let us know using one of the ways described below in Section 9 (How to Contact Us).

6. Security of Personal Data

Casio has implemented and will maintain reasonable security measures, including administrative, physical and technical safeguards, designed to protect Personal Data from unauthorized access, destruction, use, modification, or disclosure.

7. Applicable Law

Although Casio is headquartered in Japan, United States laws apply to Casio’s collection, use and disclosure of your Personal Data. Depending on the specific situation, federal law and/or the law of the state in which you reside will govern.

8. Updates to this Privacy Notice

Casio may update this Privacy Notice from time to time. Please review the Privacy Notice periodically to make sure you are aware of Casio’s current practices in connection with the Services.

9. How to Contact Us

You may contact us concerning privacy inquiries using one of the following contact methods:

10. California Residents’ Rights

The California Consumer Privacy Act (CCPA), California’s “Shine the Light” law, and the California Online Privacy Protection Act provide individuals who are California residents with specific rights regarding their Personal Data. If you are a California resident, this section provides you with additional information, describes your rights and explains how to exercise those rights.

a. Categories of Personal Data Collected

Category Types of Information Collected Purpose for Collection
Identifiers. Name, email address, Internet Protocol (IP) address, and online identifier.
  • - Creating an account
  • - Providing the Services
  • - Providing support and security of the Services
Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)). Name and email address

Some personal information included in this category may overlap with other categories.
  • - Creating an account
  • - Providing the Services
  • - Providing support and security of the Services
  • - Confirming the parental consent
Characteristics of protected classifications. Age (birth date)
  • - Confirming minimum age
Commercial information. Records of products or services purchased, products obtained or considered, or other consuming histories.
  • - Providing the Services
Biometric information. Not collected.
Internet or other similar network activity. Information on a consumer’s interaction with the Service’s website or application.
  • - Providing and personalizing the Services
  • - Improving the Services (deidentified data only)
Geolocation data. Not collected.
Sensory data. Audio, electronic, visual, or similar information.
  • - Providing the Services
Professional or employment-related information. Not collected.
Non-public education information (per the Family Educational Rights and Privacy Act, 20 U.S.C. § 1232g and 34 C.F.R. Part 99) Not collected.
Inferences drawn from other personal information. Profile data about a user reflecting the user’s time and frequency to access the Services, user activities and behaviors only in the Services.
  • - Providing the Services
  • - Providing support and security of the Services
  • - Providing tailored contents and services to meet user’s needs and preferences

Sensitive Personal Data. Some types of Personal Data are subject to a heightened level of protection under data privacy laws. These types of personal information are called “Sensitive Personal Data” and include social security numbers, driver’s license numbers, passport numbers, precise geolocation data, racial or ethnic origin information, and genetic data. Casio does not collect, receive or process Sensitive Personal Data in connection with the Services.

b. Disclosure of Personal Data

Casio does not disclose Personal Data collected in connection with the Services to any third parties for a business purpose.

Casio may disclose Personal Data to its service providers, which are contractually obligated to only use the Personal Data for the purpose of providing the Services.

c. Retention of Personal Data

Personal Data is stored by Casio or its service providers only for as long as necessary to provide the Services to you (or where applicable your school or educational agency), in accordance with applicable data protection laws or, if applicable, our contractual obligations. When we no longer need to process your Personal Data for purposes of providing the Services or to comply with our legal or regulatory obligations, the Personal Data will be deleted or will be deidentified and anonymized so that it no longer can be associated with you.

d. Your Rights

Right to Correct Personal Data. You may correct information associated with your CASIO ID account by logging into your account and updating that information. If you believe the Services have any inaccurate Personal Data, please contact us using one of the ways described below in Section 10.e. (Submission of Requests).

Right to Know. Subject to certain limits, you may ask us to provide the following information:

Right to Delete. You have the right to ask us to delete any Personal Data that we have collected about you, subject to certain limitations as set forth under CCPA. We may deny your deletion request if the information is necessary for us or our service providers to, among other things, provide a service you requested, take actions reasonably anticipated in the context of our business relationship with you, perform a contract we have with you, detect and protect against security incidents or illegal activity, comply with a legal obligation, or exercise a right provided for by law.

Right to Nondiscrimination. We will not discriminate against you for exercising your privacy rights under California law. The CCPA permits us to offer you certain financial incentives that can result in different prices, rates, or quality levels, which are related to your Personal Data’s value; however, we do not offer financial incentives in connection with the Personal Data collected in connection with the Services.

Right to Opt Out of Sale or Sharing. Casio does not sell or share Personal Data collected in connection with the Services.

e. Submissions of Requests

If you are a California resident, you may submit a request, to correct, to access, to delete, or to opt out in any of the following ways:

f. Responses to Requests

We will confirm receipt of your request within 10 business days of receipt and generally will respond to your request within 45 days of receipt. If we need more time to respond, we will inform you of the reason and we may take up to an additional 45 days to respond.
You will not have to pay a fee to access your Personal Data or to exercise any of the other rights. However, we may charge a reasonable fee if your request is repetitive or excessive; alternatively, we may refuse to comply with your request in these circumstances.

ANNEX

Depending on the purpose of the processing for which we use each service provider, we share certain of your Personal Data (as necessary) with the following service providers: