Policy Regarding the Use of Access Data

The six railway companies comprising the Japan Railways Group ( “we” or “us”) obtain access data including cookies on the website of “JAPAN RAIL PASS ” (the “Website”).

This policy regarding the use of access data (this “Policy”) explains the types and purposes of use of access data that we obtain.

This Policy may be changed from time to time.

1.Access Data We Collect

Access data that we collect via the Website are as follows:

  • Cookie: A cookie means a file that is formed and saved on a device when accessing websites, and includes information that is sent and received between the browser and web servers. Since the use of a cookie enables the browser and webservers to record login status, languages, other display settings, and the like, the same information need not be entered when moving from one page to another. Furthermore, being saved on the user’s web browser, cookies facilitate subsequent access to the Website and also improve user accessibility.
  • Access Logs: Access logs include information such as IP address, host name, used browser name, and access date and time of users who accessed the Website.

2.Types of Cookies We Collect

The Website uses the following cookies:

  • Essential Cookies
    The following cookies are essential cookies for users to use the Website.

    Cookie Name Source Purpose Remarks
    ARRAffinity generated in the Website to identify the user’s access to the Website Expiration time: deleted when the browser is closed

  • Analytics Cookies
    The following cookies are used to confirm how users use the Website and performance of the Website.

    Cookie Name Source Purpose Remarks
    _ga Google Analytics to analyze access and distinguish users https://tools.google.com/dlpage/gaoptout?hl=ja
    Expiration time: 2 years
    _gid to analyze access and distinguish users https://tools.google.com/dlpage/gaoptout?hl=ja
    Expiration time: 24 hours
    _gat to analyze access, suppress request rates, and distinguish users https://tools.google.com/dlpage/gaoptout?hl=ja
    Expiration time: 1 minute

3.Legal Basis of Processing

We will process user’s access data only when the laws allow us to do so. In many cases, we will process user’s access data on the following legal basis:

  • Access Data for Analytics Including Analytics Cookies: Consent
    We may process access data for analytics including analytics cookies only when we obtain consent from the user to do so.
  • Other Access Data: Legitimate Interests
    “Legitimate interests” are recognized where processing of access data other than access data for analytics is necessary for a legitimate interest pursued by us or a third party, and user’s interests and fundamental rights do not override those interests.

4.Provision of Access Data to a Third Party

We may provide access data to a particular third party including data controllers and telecommunications companies.

5.Methods to Manage Cookies

Users can optionally set analytics cookies on an individual basis (for the setting method, please see the remarks column in the 2.(2) table above).
Users can also control or delete other cookies by browser settings. For detailed information, please see https://aboutcookies.org/ . Users can delete existing cookies on a user’s device and configure it to prevent it from setting a cookie. If a user controls or deletes a cookie, the user may need to manually adjust some settings every time he or she accesses the Website, and some services or functions may no longer be available.