House of ITO is a global brand specializing in the production and distribution of high-end alcoholic beverages, notably Japanese whiskey and tequila. Our operations include sourcing, manufacturing, and exporting from Japan and Mexico, while our product marketing and retailing are carried out globally, including in India. This Privacy Policy applies to personal data collected through our websites, apps, events, third-party platforms, customer interactions, and any other channel controlled or managed by us.
We act as the data controller for all personal information collected unless specified otherwise. Our commitment is to process your personal data in a lawful, fair, and transparent manner in line with applicable data protection regulations.
We collect various types of personal data from you, depending on the nature of your interaction with us. This includes information that you directly provide to us, data collected automatically through technological means, and data obtained from third-party sources. The personal data we may collect includes but is not limited to your full name, date of birth, gender, nationality, postal and email addresses, telephone number, geolocation information, and any preferences or consents you provide. When making purchases through our platform, we may also collect payment-related details, transaction history, and billing or shipping information.
In addition, we automatically collect technical data such as IP address, browser type, device identifiers, operating system, access times, and referral URLs. This technical data helps us enhance user experience and maintain platform security. Furthermore, if you engage with us on social media or participate in surveys, promotions, or feedback forms, we may also process information relating to your interests, responses, preferences, and communication history.
House of ITO does not intentionally collect sensitive personal data such as health status, biometric data, religious or political affiliations, unless such data is lawfully required in very limited circumstances, such as compliance with legal obligations.
We collect personal data through both direct and indirect means. Direct collection occurs when you visit our website, create an account, make a purchase, communicate with our customer support, sign up for newsletters, participate in events, or engage with our marketing campaigns. Indirect collection occurs via automated technologies such as cookies, pixels, web beacons, analytics tools, and server logs that track your interaction with our digital assets. We also collect data from third-party sources such as marketing partners, distributors, payment processors, publicly available databases, and social media platforms when permitted by law.
This data may be aggregated with data we already hold about you to enhance your experience and deliver relevant content and services. All such collection mechanisms are governed by appropriate legal bases, including consent, performance of a contract, legal obligation, or our legitimate interest in conducting and growing our business.
Your personal data is used for specific, explicit, and lawful purposes that are necessary for the functioning of our business and for delivering a personalized and secure user experience. These purposes include the processing of your orders and transactions, delivering products and services, communicating with you regarding your orders or inquiries, verifying your age and eligibility to access alcohol-related content, and providing customer support.
We also use your data to customize and improve our products, services, and digital platforms based on user behavior and feedback. In line with applicable laws, your information may be used to send you marketing messages, promotional offers, and survey requests. Additionally, personal data may be processed for the prevention of fraud, enforcement of our legal rights, internal audits, quality assurance measures, and for compliance with statutory obligations such as tax, customs, and public health regulations.
All processing activities are conducted with appropriate safeguards, and no processing is undertaken for purposes incompatible with the original reason the data was collected.
We do not sell your personal information to third parties. However, in the course of operating our business, we may share your data with certain trusted parties. This includes affiliated companies within the House of ITO corporate group, logistics and warehousing providers, IT service vendors, payment gateway providers, marketing agencies, data analytics providers, and professional advisors such as auditors or legal counsel.
We may also disclose your data where required to do so by law, regulatory obligation, legal process, or court order. Furthermore, in the event of a business transfer, such as a merger, acquisition, or sale of assets, your data may be shared with the acquiring entity, provided that such transfer remains compliant with data protection laws.
In all such scenarios, we ensure that the recipient of the data upholds comparable data protection obligations, either through data processing agreements or relevant statutory safeguards.
Given our operations across Japan, Mexico, India, and other international jurisdictions, your personal data may be transferred across borders and processed in countries other than the one in which you reside. These countries may have different data protection laws; however, we ensure that such transfers comply with applicable legal standards.
Where data is transferred outside of your home country, we rely on legally recognized transfer mechanisms such as Standard Contractual Clauses (SCCs), Binding Corporate Rules (BCRs), or adequacy decisions. These mechanisms ensure that your data receives an adequate level of protection and is not used for unlawful or unauthorized purposes.
We implement appropriate technical and organizational security measures to prevent unauthorized access, misuse, loss, alteration, or destruction of your personal data. These measures include the use of secure data storage systems, SSL encryption, firewalls, intrusion detection tools, restricted access protocols, multifactor authentication, and regular system monitoring.
Employees and partners with access to your personal data are subject to confidentiality obligations and are trained in data protection best practices. Despite our efforts, no digital system can be completely immune to risks. Therefore, we encourage you to use secure passwords and exercise caution when sharing personal information online.
In the event of a suspected data breach, we have procedures in place to respond promptly and will notify affected users and regulatory authorities as required by applicable laws.
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, regulatory, tax, or accounting requirements. The retention period for your data depends on the nature of the data, the purpose of collection, and the statutory limitations under applicable laws.
When the data is no longer needed, we securely delete, anonymize, or archive it in accordance with industry standards. In certain cases, data may be retained for longer periods where required for legal defense or historical record-keeping purposes.
Subject to applicable law and jurisdiction, you may be entitled to exercise a range of rights regarding your personal data. These rights include the right to access your data, the right to request correction of inaccurate or incomplete data, the right to request deletion of your personal data, the right to object to or restrict certain processing activities, and the right to receive your data in a portable format.
You also have the right to withdraw your consent where processing is based on consent. Additionally, you have the right to file a complaint with the relevant data protection authority in your country should you believe that your rights have been violated.
To exercise any of these rights, please contact us at privacy@houseofito.com. We will respond to all legitimate requests within the timeframes established by law and may request additional verification before acting on your request.
House of ITO does not knowingly collect or process personal data from individuals who are under the legal drinking age in their jurisdiction. Our website and services are strictly intended for persons of legal drinking age. If we become aware that we have collected information from a minor without parental consent or contrary to legal requirements, we will promptly delete such data from our records.
Our website uses cookies and similar technologies to improve user experience, enable functionality, analyze traffic, and support targeted advertising. Cookies may collect information such as IP address, browser settings, user preferences, and session activity. These technologies help us to deliver a consistent and relevant user experience while also measuring the effectiveness of marketing campaigns.
You may modify your browser settings to reject or delete cookies. However, please note that disabling cookies may limit the functionality of certain features of our website. For detailed information about our cookie practices and how to manage your settings, please consult our Cookie Policy.
Our website may contain links to third-party websites, applications, or platforms not operated or controlled by House of ITO. We are not responsible for the privacy practices, data handling, or security of such third-party services. We strongly advise you to review the privacy policies of any external sites you visit to understand how your data will be used.
We reserve the right to update, modify, or revise this Privacy Policy at any time to reflect changes in legal requirements, technological advancements, or our business practices. When changes are made, the “Last Updated” date at the top of this policy will be revised accordingly. In the case of material changes, we may also notify users via email or website notifications. Continued use of our website or services following the publication of changes will constitute your acceptance of the revised policy.
If you have any questions, concerns, or requests regarding this Privacy Policy or the way your personal data is handled, you may contact our Data Protection Officer or Privacy Team by email at:
Or by writing to us at:
We are committed to working with you to resolve any complaint or issue in a timely and respectful manner.