Skip to main content

Privacy Policy

Last Updated: November 21, 2025

RIWB Inc. (the "Company", Japanese name: 株式会社リウェビー) recognizes that appropriately handling information, including personal information, of users of its smart locker service "Locker Pass" (the "Service") is an important responsibility.

This Privacy Policy (this "Policy") sets forth how the Company handles user information in connection with the Service.

Article 1 (Scope of Application)

  1. This Policy applies to all user information collected and used by the Company in connection with the Service.
  2. The handling of information on third-party websites or services linked from the Service is governed by the privacy policies of those third parties and is outside the scope of this Policy.

Article 2 (Types of Information Collected)

The Company may collect the following information in providing the Service:

1. Information Provided by Users

  • Email address (required)
  • Mobile phone number (optional)
  • Reservation date and time, Check-in time, and Check-out time
  • Other information entered by users through forms in the Service (such as inquiry details)

2. Usage Information

  • Reservation ID (PIN), locker number, and location information
  • Reservation status (reserved, in use, completed, No-Show, cancelled, etc.)
  • Extension status and number of extensions
  • Payment amount, currency, and payment status
  • Usage date/time and usage history

3. Payment Information

  • Payment identifiers managed by external payment processors
  • Credit card brand, card type, and other attribute information

(The Company does not itself store sensitive card information such as full card numbers, expiration dates, or security codes.)

4. Technical Information Related to Devices and Access

  • IP address
  • Browser type, version, and language settings
  • Device type, operating system, and screen size
  • Referrer URL and parameters identifying traffic sources
  • Country or region of access
  • Identifiers stored in cookies, local storage, or similar technologies

5. Information from Analytics and Marketing Tools

  • Access statistics and event information (e.g., page views, scrolls, button clicks) collected through analytics tools such as Google Analytics 4
  • Screen interaction data from heatmap and session analysis tools (e.g., Microsoft Clarity), configured to avoid recording personally identifiable information
  • Search, display, and click statistics collected through search engine analysis tools, map services, and business listing services

Article 3 (Purposes of Use)

The Company uses collected user information for the following purposes:

1. To Provide and Operate the Service

  • To provide functions such as locker Reservations, Check-in, Check-out, and extensions
  • To send emails and notifications containing Reservation IDs, access links, and usage instructions
  • To process No-Show and automatic extension rules
  • To support Reservation recovery

2. To Process Payments and Billing

  • To process usage fees, extension fees, cancellation fees, and handling charges
  • To handle payment failures, cancellations, and refunds

3. To Respond to Inquiries and Provide Support

  • To respond to user inquiries
  • To investigate and resolve issues and malfunctions

4. To Improve the Service

  • To improve UI/UX through access analysis and user flow analysis
  • To identify and address bottlenecks in screens and content
  • To measure and improve marketing KPIs (e.g., Reservation completion rate)

5. To Prevent Fraud and Ensure Security

  • To detect and prevent unauthorized access, impersonation, and fraudulent payments
  • To monitor the status of servers, networks, and locker equipment

6. To Comply with Laws and Resolve Disputes

  • To respond appropriately to inquiries from public authorities such as the police
  • To verify facts as necessary in the event of disputes or litigation

Article 4 (Use of Cookies and Similar Technologies)

  1. The Company may use cookies and similar technologies in the Service to identify user browsers and understand service usage patterns.
  2. Cookies are primarily used for the following purposes:
    • Maintaining login status
    • Temporarily storing Reservation information
    • Analyzing service usage
  3. Users may refuse to accept cookies by changing their browser settings. However, some features of the Service may not function properly in such cases.
  4. The Company uses analytics tools (e.g., Google Analytics 4) and other common web analysis tools to collect anonymized statistical information for service improvement and marketing purposes. Users may opt out of data collection through the opt-out mechanisms provided by each tool provider.

Article 5 (Analytics and Transmission of Information to External Services)

The Company uses the following external services to improve the quality of the Service and understand usage patterns:

  • Google LLC (Service: Google Analytics 4)
  • Microsoft Corporation (Service: Microsoft Clarity)

Through these services, information such as IP addresses, browser and device types, URLs of pages viewed, and access timestamps may be transmitted to the servers of each provider via cookies and similar technologies.

The collected information is used solely for analyzing usage of the Service and improving the Service.

Users may disable data collection through the opt-out mechanisms provided by each provider. For information about each service's privacy policy, please refer to the following:

Article 6 (Disclosure to Third Parties)

  1. The Company will not provide personal information to third parties except in the following cases:
    • When the user has given consent
    • When required by law
    • When necessary to protect a person's life, body, or property, and it is difficult to obtain the user's consent
    • When particularly necessary for improving public health or promoting the sound development of children, and it is difficult to obtain the user's consent
    • When cooperation is necessary for a government agency or local public body to execute affairs prescribed by law
  2. On the basis of the Terms of Service, if luggage is left in a locker for more than 72 hours, the Company will report it to the police as lost property pursuant to the Japanese Lost Property Law and other applicable laws. In such cases, user information (email address, phone number, usage history, etc.) may be provided to the police.
  3. Personal information may be transferred in connection with a business transfer, company split, or other business succession.

Article 7 (Outsourcing)

  1. The Company may outsource part of its operations to the following types of third parties to the extent necessary for providing the Service, and may allow them to handle personal information:
    • Payment processors
    • Cloud service providers
    • Analytics, error logging, and monitoring tool providers (e.g., Google Analytics 4, Microsoft Clarity)
    • Email delivery service providers
  2. The Company exercises appropriate management and supervision over such contractors, including entering into agreements regarding the protection of personal information.

Article 8 (Transfer to Third Parties in Foreign Countries)

Servers of payment processors, cloud service providers, analytics providers, and similar services may be located outside Japan.

The Company takes appropriate security measures in accordance with the Act on the Protection of Personal Information and other applicable laws when providing or handling personal information with third parties located in foreign countries to the extent necessary.

Article 9 (Retention Period)

  1. The Company retains user information for the period required by law and for the period necessary for business purposes, to the extent necessary to achieve the purposes of use. Specific retention periods are determined by the Company based on the type of information and applicable laws.
  2. After the retention period has expired or the purpose of use has been achieved, the Company will endeavor to delete or anonymize the information without undue delay within a reasonable scope.

Article 10 (Security Measures)

  1. The Company takes necessary and appropriate measures to prevent leakage, loss, or damage of personal information and to ensure the security of personal information.
  2. Specific measures include:
    • Encryption of communications (SSL/TLS)
    • Access permission management
    • Appropriate password setting and changes
    • Log collection and retention
    • Server and network monitoring
    • Measures against unauthorized access
    • Employee training
  3. In the event of a personal information breach, the Company will take necessary reporting, notification, and preventive measures in accordance with applicable laws and guidelines.

Article 11 (User Rights)

  1. Users may make the following requests regarding their personal information held by the Company:
    • Notification of the purpose of use
    • Disclosure of retained personal information
    • Correction, addition, or deletion of content
    • Suspension or erasure of use
    • Cessation of third-party provision
  2. To make such requests, please contact us using the information provided at the end of this Policy. We may request additional information for identity verification purposes.
  3. The Company may not be able to comply with requests in cases where the Company is not obligated to do so under applicable laws or where the request is excessive. In such cases, the Company will appropriately notify the user of the reasons.
  4. Requests will be handled within a reasonable period.

Article 12 (Personal Information of Minors)

  1. The Service is not primarily intended for persons under 16 years of age.
  2. If a user under 16 years of age uses the Service, please obtain the consent of a parent or guardian before use.
  3. The Company may confirm whether parental consent has been obtained as necessary.

Article 13 (Behavioral Targeting Advertising)

  1. At present, the Service does not utilize behavioral targeting advertising by third-party ad networks.
  2. If behavioral targeting advertising is introduced in the future, the Company will clearly disclose this fact and the cookies and opt-out methods used through amendments to this Policy or separate notices.

Article 14 (Changes to This Policy)

  1. The Company may change the content of this Policy as necessary.
  2. When changing this Policy, the Company will publish the amended content and effective date on the Company's website. In the case of significant changes, users will be notified through the Service website or by email.
  3. If a user uses the Service after the effective date, the user is deemed to have agreed to the amended Policy.

Article 15 (Language)

If this Policy is provided in multiple languages and there is any discrepancy between the Japanese version and other language versions, the Japanese version shall prevail.

Article 16 (Contact Information)

For inquiries regarding the handling of personal information, please contact us at:

End of Privacy Policy