Personal Data Protection Policy

Mitsubishi Research Institute, Inc., (hereinafter referred to as the "Institute") believes that it is its social responsibility to properly manage and protect personal data. We hereby set forth the following as our personal data protection policy. All board members, employees, and other staff members shall be kept fully aware of the policy, and we shall make every effort to ensure the protection of personal data.

1	Management of personal data The Institute shall adopt and maintain a system to manage and protect personal data and comply with designated internal regulations for the proper collection, use, and disclosure of personal data.

2	Collection and use of personal data When collecting and using personal data, the Institute shall specify the purposes of usage, and will manage personal data appropriately within the necessity of achieving the purposes specified.

3	Disclosure of personal data The Institute shall not provide or disclose personal data to any third parties other than to entities to which the data subject's consent has been given.

4	Entrusting personal data to outside parties The Institute may entrust personal data to outside parties for such purposes as questionnaire issuance and data processing. In such cases, we shall select organizations whose standards for personal data management fulfil our security requirements, and we shall appropriately manage and oversee the entrusted parties.

5

Security measures for personal data The Institute shall adopt security measures to prevent unauthorized access to, leaking, tampering, destruction, or loss of personal data held by the Institute in order to ensure the security and accuracy of personal data. In the event that a problem arises, we shall make every effort to prevent the damage from spreading, and corrective measures shall be taken promptly.

6	Responding to complaints and inquiries on personal data The Institute shall designate a contact point for complaints and inquiries from the subjects of personal data and respond to such complaints and inquiries properly.

7	Continuous improvement of our compliance program To properly maintain our personal data protection system, we shall create and implement a compliance program. Moreover, we shall periodically audit the implementation of the program and endeavor to upgrade it on an ongoing basis.

8	Continuous improvement of our personal data protection management system To properly maintain our personal data protection system, we shall create a personal data protection management system. Moreover, we shall conduct periodical audits on the implementation of the system and endeavor to upgrade it on an ongoing basis.
	Enacted: July 10, 2002 Revised: March 16, 2005 Revised: December 20, 2005 Revised: September 6, 2006 Masayuki Tanaka President Mitsubishi Research Institute, Inc.