Policy Regarding the Use of Access Data

The six railway companies comprising the Japan Railways Group ( “we” or “us”) obtain access data including cookies on the website of “JAPAN RAIL PASS Reservation” (the “Website”).

This policy regarding the use of access data (this “Policy”) explains the types and purposes of use of access data that we obtain. For matters not indicated in this Policy, please refer to the “Privacy Policy Regarding Japan Rail Pass ”.

This Policy may be changed from time to time.

1.Access Data We Collect

Access data that we collect via the Website are as follows:

(1)Cookie:
A cookie means a file that is formed and saved on a device when accessing websites, and includes information that is sent and received between the browser and web servers. Since the use of a cookie enables the browser and webservers to record login status, languages, other display settings, and the like, the same information need not be entered when moving from one page to another. Furthermore, being saved on the user’s web browser, cookies facilitate subsequent access to the Website and also improve user accessibility.

(2)Access Logs:
Access logs include information such as IP address, host name, used browser name, and access date and time of users who accessed the Website.

(3)Web Beacons:
Web beacons mean small image files embedded in a website, and due to them, whether users visited the website, visit count, and the like can be ascertained.

2.Types of Cookies We Collect

The Website uses the following cookies:

(1)Essential Cookies
The following cookies are essential cookies for users to use the Website.

Cookie Name/Source Purpose
ASP.NET_SessionId
(generated in the Website)
to identify the user’s access to the Website
Expiration time:deleted when the browser is closed
ServerID
(generated in the Website)
to identify the connected server
Expiration time:deleted when the browser is closed
Token
(generated in the Website)
to manage confidential information
Expiration time:deleted when the browser is closed
__RequestVerificationToken
(generated in the Website)
to prevent unauthorized postings to the Website
Expiration time:deleted when the browser is closed
selectedLanguage
(generated in the Website)
to automatically set the selected language when accessed again
Expiration time: 100 days
_abck
(Akamai BotManager)
to protect the Website from malicious attacks
Expiration time: 12 months
bm_sz
(Akamai BotManager)
to protect the Website from malicious attacks
Expiration time: 4 hours
bm_sv
(Akamai BotManager)
to protect the Website from malicious attacks
Expiration time:2 hours
bm_mi
(Akamai BotManager)
to protect the Website from malicious attacks
Expiration time:2 hours
ak_wfSession
(Akamai BotManager)
to protect the Website from malicious attacks
Expiration time:2 hours
sec_cpt
(Akamai BotManager)
to protect the Website from malicious attacks
Expiration time:2 hours
ak_bmsc
(Akamai BotManager)
to protect the Website from malicious attacks
Expiration time:2 hours
CookieControl
(Civic Cookie Control)
to manage information regarding setting of Civic Cookie Control v8
Expiration time:100 days

(2)Analytics Cookies
The following cookies are used to confirm how users use the Website and performance of the Website.

Cookie Name/Source Purpose
_ga
(Google Analytics)
to analyze access and distinguish users
https://tools.google.com/dlpage/gaoptout?hl=ja
Expiration time: 2 years
_gid
(Google Analytics)
to analyze access and distinguish users
https://tools.google.com/dlpage/gaoptout?hl=ja
Expiration time: 24 hours
_gat
(Google Analytics)
to analyze access, suppress request rates, and distinguish users
https://tools.google.com/dlpage/gaoptout?hl=ja
Expiration time: 1 minute

3.Legal Basis of Processing

We will process user’s access data only when the laws allow us to do so. In many cases, we will process user’s access data on the following legal basis:

(1)Access Data for Analytics Including Analytics Cookies: Consent
We may process access data for analytics including analytics cookies only when we obtain consent from the user to do so.

(2)Other Access Data: Legitimate Interests
“Legitimate interests” are recognized where processing of access data other than access data for analytics is necessary for a legitimate interest pursued by us or a third party, and user’s interests and fundamental rights do not override those interests.

4.Provision of Access Data to a Third Party

We may provide access data to a particular third party including data controllers and telecommunications companies.

5.Methods to Manage Cookies

Users can optionally set analytics cookies on an individual basis (for the setting method, please see the remarks column in the 2.(2) table above).
Users can also control or delete other cookies by browser settings. For detailed information, please see AboutCookies.org. Users can delete existing cookies on a user’s device and configure it to prevent it from setting a cookie. If a user controls or deletes a cookie, the user may need to manually adjust some settings every time he or she accesses the Website, and some services or functions may no longer be available.

revision history

  • 06/01/2020create a new entry
Loading...

Current time in Japan (UTC + 9:00)

(MM/DD/YYYY HH:MM)