Home > Sustainability > Our commitment > Compliance



Guided by the Rakuten Group Code of Ethics, the Group has created systems to ensure that companies affiliated with the Rakuten Group comply with regulatory requirements. Related training is also conducted.

Compliance Training

The Rakuten Group conducts compliance training for executives and employees in order to raise awareness of legal compliance.

Harassment Training

The Rakuten Group understands the importance of creating and maintaining an environment where the human rights of all employees are respected and job responsibilities can be carried out on the basis of mutual trust. Training is held for executives and employees to raise awareness of sexual harassment and other issues, and realize this vision.

The Rakuten Group has also established a harassment consultation desk to respond to reports of harassment and related complaints, and ensure that behavior constituting sexual harassment is dealt with appropriately.

Rakuten Hotline

The Rakuten Group has set up internal and external hotlines for Group employees to report violations or suspected violations of regulatory requirements, corporate ethical tenets, the Rakuten Group Regulations, or other company rules or regulations, and related issues.

Protection and Use of Personal Information

The Rakuten Group gathers personal information through Rakuten membership registration, product ordering and other processes. We also collect browser information, information on viewed pages and product searches and other information when Rakuten services are used.
The Rakuten Group provides services that help make our customers' lives richer and more convenient by using the characteristics of the Internet and making effective use of personal information. At the same time, we recognize that the personal information we collect is extremely important information, so stringent measures are taken to address the risk that such information will be leaked or lost. Customer information is used while giving appropriate consideration to privacy.

Use of Personal Information
The personal information of customers is used in the following ways:
-Page Personalization
Customer information is used to display information on web pages tailored to each customer. For example, the web page of a customer logged in as a Rakuten member displays the person's name, member rank, points accumulated and other information.
Member information displayed once a customer logs in is displayed only on that customer's browser. It is not displayed on the browser of any third party who is not logged in.
Recommendations are an advertising method in which information is displayed on products and services that match the customer's interests. There are two main ways of recommendations work on sites associated with the Rakuten Group. The first is called "retargeting." Retargeting displays a customer's product view history, purchase history, bookmarks and other information on web pages and email newsletters based on the customer's Rakuten member ID and browser cookies. The second is "product recommendations." This involves analyzing the customer's purchase history, page view history and other information linked to his/her Rakuten member ID, etc. and then recommending product and service information optimal for that customer on web pages and email newsletters. Both methods provide services using the customer's personal information, but personal information is not provided to any third party.
Initiatives for Protecting Personal Information
The Rakuten Group's Policy on Protection of Personal Information was established to ensure compliance with the law and appropriate handling of customers' personal information. Specific measures to mitigate the risk of information leaks and loss have also been instituted, and ISO/IEC 27001 certification, the international information security standard, has been acquired.
-Sample Initiatives
  1. Organizational Structures and Company Rules
    RGR(the Rakuten Group Regulations) include rules on organizational structures and company rules to protect personal information and the like.
  2. Employee Training
    Employees are regularly trained with e-learning courses, and other training is implemented if required by the job.
  3. Raising Awareness and Spreading Knowledge on Protecting Personal Information
    Threats related to misuse of personal information, and information on matters identified by customers related to protecting personal information, are broadly communicated as necessary.

Page top