Privacy Policy

Toshiba Electronic Devices & Storage Corporation ("Toshiba"), in accordance with its Basic Commitment and Standards of Conduct, engages in business activities that contribute to society, while endeavoring to earn the trust of all customers and meet the expectations of stakeholders.

Toshiba protects personal data obtained from its stakeholders in the course of business activities appropriately in accordance with the following Basic Policy, recognizing that personal data is an important asset of each stakeholder and also an important asset for Toshiba, leading to creation of new value.

1. 1. Toshiba strictly observes the Act on the Protection of Personal Information and relevant laws, guidelines established by the government and other regulations. Toshiba has established the Personal Data Protection Policy (the "Policy"), which Toshiba carefully implements and maintains, while striving to continuously improve the personal data protection management system.
2. 2. Toshiba has established a management framework to protect personal data assigning a person in charge at each of its relevant divisions and ensures that all officers and employees recognize the importance of the Policy and comply with it.
3. 3. Toshiba utilizes personal data within the scope of the intended use that is clearly communicated to customers, and takes measures not to be used beyond the scope. Toshiba does not disclose or provide personal data provided by customers to third parties except with the consent of the customer from whom the personal data was obtained or when there is a legitimate reason.
4. 4. While maintaining the accuracy and up-to-dateness of personal data, Toshiba strives to prevent unauthorized access to personal data or the leakage, loss, or damage of personal data and continually enhances and remediates information security management.
5. 5. Toshiba responds to inquiries from customers concerning personal data or requests from customers for disclosure of personal data sincerely and without delay.

Established: July 1, 2017

Revised: March 27, 2018

Hiroshi Fukuchi

President and Representative Director

Toshiba Electronic Devices & Storage Corporation

This Basic Policy applies to personal data held by Toshiba Electronic Devices & Storage Corporation in Japan. Concerning the privacy policies of Toshiba's affiliates in Japan or overseas subsidiaries, please check with each company.

The business domains Toshiba utilizes personal data are covered by Electronic Devices and Storages.

With respect to the intended use of personal data which Toshiba holds, please refer to the Intended Use of Personal Data (Material).

When Toshiba obtains personal data from customers on each products and services, Toshiba clearly indicates in advance the purpose for which the personal data is intended to be used. Toshiba uses the information within the scope of the stated purpose of use. When the need to use a customer's personal data for any purpose that goes beyond the stated purpose of use arises, Toshiba notifies the customer to that effect and obtains the customer's consent before using the information for such purpose. Toshiba uses personal data which are contracted from other companies within the scope of the contract with the company.

1. 1. Toshiba does not disclose customers' personal data to third parties except in the following cases.
   1. 1. When the customer has given a prior consent to the disclosure
   2. 2. When complying with laws and regulations
   3. 3. When disclosure is necessary for the protection of human life, human health or property and it is difficult to obtain the consent of the customer
   4. 4. When Toshiba consigns the handling of personal data to a third party within the scope necessary to achieve the purpose of use
   5. 5. When another entity succeeds to the business of Toshiba due to a merger, corporate separation, transfer of business or otherwise
2. 2. When it is deemed that an inquiry from a customer concerning products, repairs, or service can be more appropriately dealt with by a Toshiba affiliate or distributor, we may provide the customer's name, address, telephone number and other information to the affiliate or distributor on the basis of consent of the customer.

Toshiba complies with the following requests from customers concerning the customer's personal data held by Toshiba : (1) Request for disclosure; (2) Request for notification of the intended purpose ; (3) Request for correction; (4) Request for addition; (5) Request for deletion; and (6) Request for cessation of use or cessation of disclosure to third parties. Please check with ＜Inquiry Desk＞ for details of request procedures.

Please note that there is a fee charged for requests for disclosure and requests for notification of the intended use.

1. Customers should direct inquiries concerning their personal data to the division that they have registered
2. Inquiries about the Personal Data Protection Policy and the division that customers have registered should be directed to <Inquiry Desk>.

When children under 16 years provide their personal data to Toshiba, they should provide them only after obtaining the consent of a parent or guardian.

1. 1. Notice for Use of Services
   Please note that some services provided by Toshiba (including services offered on websites operated by Toshiba) may not be available if the customer does not provide personal data.
2. 2. Basic policy and management
   Toshiba Electronic Devices & Storage Corporation ("Toshiba") is handling in compliance your personal information that is registered on Web site of Toshiba in Japan and the United States of personal information protection laws. These laws and regulations may be different as those applied in the country or region of the customer. The Customers of the information may be subject to disclosure request by the government agencies, the courts, law enforcement agencies on the basis of Japan and the United States laws and regulations. The Personal information is managed in accordance with Toshiba's privacy policy. When customers use Toshiba's Web site, please read our privacy policy, it is necessary to agree for them.
3. 3. Personal Information Gathering
   If the customer has authorized Toshiba to cooperate with external service operated by third parties, it will be assumed that the customer has authorized Toshiba collect the customer's personal information from the external service.
4. 4. Purposes of Use of Personal Information
   Personal Information will be used for the following purposes:
   • Provision of membership service such as e-mail newsletter
   • Sending information about Toshiba's products, development of Toshiba's new products, documents, service, or events
   • Conducting questionnaire surveys
   • Implementation of Toshiba s products and/or service monitoring programs
   • Response to your inquiries
5. 5. Encryption of Transmission
   In case Toshiba receives personal data from customers, the website uses encryption technology such as SSL (Secure Sockets Layer) /TLS (Transport Layer Security) and the personal data of customers is protected. It may not be possible to access the page from browsers that do not support SSL/TLS or other technologies.
6. 6. Consignment of Personal Information Management
   In some cases Toshiba may consign all or part of the management of Personal Information to third parties within the necessary scope as specified in the above "3. Purposes of Use of Personal Information."
7. 7. Provision of Personal Information
   Personal information, which you register on the website of Toshiba, will be shared among Toshiba, Toshiba's affiliates and business partners. Personal Information will be used in any country and/or region where Toshiba and/or Toshiba's affiliates are doing each business.
8. 8. Use of Cookies and Web Beacons
   Toshiba uses cookies and web beacons to provide better services on its websites
   1. 1. Use of Cookies
      Cookies are small packets of information that Web servers transmit to visitors' or users' browsers for the effective operation of the Internet. Toshiba may use cookies to customize or personalize Web sites in order to better meet your individual expectations or requirements, and to improve the contents of Web sites or the types of services provided. Browsers can be set to refuse cookies or to provide a warning whenever cookies are being received. However, computers that are set to refuse cookies will not be able to make use of useful functions, such as site personalization.
   2. 2. Use of Web Beacons
      Web beacons (clear GIF) are a technology that uses GIF files and scripts to capture the status of access from your computer, and to get statistics on the usage rate of specific web pages. Use of web beacons together with the above mentioned cookies makes it possible to obtain detailed statistical information. Toshiba websites use technologies such as web beacons for the purpose of obtaining statistical information that can be used to improve its websites and for the purpose of providing customized information by matching your personal information provided to Toshiba with the record of your accesses to the Toshiba websites. By adjusting browser settings, customers can refuse to accept cookies and/or display warnings when they receive cookies.
   3. 3. Notes for Linkss
      Toshiba disclaims any responsibility for the security of customers' personal data used on third parties' websites that are linked from Toshiba websites. Please confirm the privacy policies of the linked websites of third parties.

When important changes and notices on personal data arise, Toshiba will post it to Information.

From time to time Toshiba may revise the Personal Data Protection Policy to better protect customers' personal data and to comply with changes in the applicable laws and regulations.

Inquiries for Personal Data Protection Policy should be directed to the following desk.

Human Resources & Administration Division

Toshiba Electronic Devices & Storage Corporation

Address: 1-1-1 Shibaura, Minato-ku, Tokyo

e-mail: semicon-Privacy@ml.toshiba.co.jp

Revised: March 27, 2018

Chief Privacy Officer

General Manager, Human Resources and Administration Division

Toshiba intends to use personal data of customers and other individuals for the following purposes:

1) Shipment of products

2) Sending information about products, services or events

3) Provision of product support or maintenance

4) Responses to inquiries

5) Issuance of warranty cards and provision of after-sales service under warranty

6) Provision of membership services

7) Product development, conduct of questionnaire surveys, implementation of product and service monitoring programs

8) Execution of contracts

9) Business negotiations or meetings with customers

1) Enforcement of rights or fulfillment of obligations under laws and regulations

2) Provision of benefits to shareholders (e.g., shareholder benefit programs, etc.)

3) Implementation of measures concerning shareholders (e.g., questionnaires, etc.)

4) Shareholder management as required by laws and regulations (e.g., preparation of shareholder data, etc.)

Communication with, reporting to, inquiries addressed to or other contact with competent governmental authorities required for the execution of business

1) Communication, discussion, and other contact required for the execution of business

2) Business partners' data management and processing of payments and receipts by Toshiba

Execution of agreement on contracted operations

1) Provision of recruitment information to and communication with applicants for employment (including internships)

2) Management of employment-related data at Toshiba

Personal data with respect to the above 3 or 4 may be obtained through commercially available lists of the relevant personnel.
Personal Data with respect to the above 5 will not be object of disclosure in principle.