Note: This document is a machine translation (Japanese to English). The Japanese version shall prevail as the official terms.

Introduction

These "4Login API Terms of Use" outline the terms for using the "4Login API" (Application Programming Interface), which is required to integrate the authentication platform application "4Login," operated by Passlogy Co., Ltd., into services (software, applications, websites, etc.) provided and operated by users of this API. These terms apply universally to all users of this API service.

To use the API service, you must read and agree to these "4Login API Terms of Use." By using the API service, you are deemed to have agreed to the terms.

Article 1: Definitions

  1. "API User" refers to individuals or corporations who have agreed to these Terms, completed the prescribed procedures, and have been provided API integration information by the Company.
  2. "These Terms" refers to the "4Login API Terms of Use."
  3. "Company" refers to Passlogy Co., Ltd., the provider of this API service.
  4. "API Service" refers to the "4Login API" provided by the Company.
  5. "Application" refers to the application "4Login" provided by the Company.
  6. "Website" refers to the official "4Login" website operated under the domain https://www.4login.jp/ and "4Login My Page" operated under https://mypage.4login.jp/.
  7. "Registration Information" refers to email addresses, personal information, etc., set by the API User or User at the time of registration or during the use of the Application or Website.
  8. "User Attribute Information" refers to personal information set within the Application or Website, information on services or features used, pages or ads viewed, times of use, usage methods, environments, etc.
  9. "Pattern" refers to a unique combination of four positions and their order among the 25 grids displayed within the Application, set or changed by the API User or User to identify themselves.
  10. "User" refers to individuals or corporations registered as members of the Application who wish to use the linked service provided by the API User.
  11. "Authenticated User" refers to Users whose authentication information and personal or attribute information have been obtained through the API service by the API User.
  12. "Personal Information" refers to the personal information defined by the Act on the Protection of Personal Information (Act No. 57 of 2003), and includes ID codes, patterns, and log information recorded through the use of the Application or Website.
  13. "Authentication Information" refers to information proving that the User is a legitimate user of the linked service through the API service or, in the case of the User also being an API User, information identifying that specific API User.
  14. "Linked Service" refers to websites, systems, applications, etc., into which the API Service’s functions are integrated by the API User.
  15. "Slot" is a feature provided by the Application at authentication time, which automatically generates passwords for each service or ID.
  16. "4Login Code" refers to an identifier used to generate a Slot.
  17. "Management ID" refers to an ID issued by the Company for identifying each linked service.

Article 2: Scope of the Terms

These Terms apply to all API Users who have completed the application process and been provided API integration information. The Terms take effect at the time the integration information is provided.

Article 3: Use of the API Service

  1. The Company grants the API User a non-exclusive, non-sublicensable right to use the API Service for the purpose of implementing it into their linked service, in accordance with the conditions set out in these Terms.
  2. The API User must use the API Service according to the specifications provided by the Company.

Article 4: Application, Start of Service, and Availability

  1. The Company shall accept applications from applicants for the API Service in a manner separately specified by the Company and conduct necessary reviews. Upon approval, the Company shall notify the applicant of their ability to use the API Service. Upon such notice, the agreement is deemed concluded, and the applicant becomes an API User under these Terms. The Company will issue a "Slot" on the Application for the purpose of authentication. Service starts when the API User inputs the "4Login Code" and "Management ID" into the Application.
  2. The service is available 24/7 in principle. However, the Company may suspend the service without prior notice for maintenance, system failures, natural disasters, or other unavoidable reasons. The API User agrees to these limitations in advance.

Article 5: Registration of Linked Services

  1. API Users must apply for registration of each service where the API will be implemented (except for some services). Required information includes the Management ID and other specifications.
  2. API Users are responsible for managing provided information. The Company is not liable for any trouble or damage resulting from disclosure to third parties.
  3. The Company will provide necessary information, including the Management ID, at its discretion and is not obligated to do so.

Article 6: Indication of API Use

  1. API Users must display that the API Service is being used on their linked services, as prescribed on the Website. Exception: 4Login for Secure And Smart Access.
  2. API Users must not:
    • (1) Mislead users into thinking the Company guarantees or created the service;
    • (2) Alter the image used to indicate the API Service or modify the HTML source;
    • (3) Display the image larger or more prominent than their own branding;
    • (4) Suggest a contractual relationship (partnership, joint venture, franchise, etc.) exists beyond API usage;
    • (5) Infringe the Company’s trademarks or logos;
    • (6) Mislead users as to the purpose of API usage;
    • (7) Display in any other inappropriate manner.

If any of the above apply, the Company may suspend the service and request correction.

Article 7: Disclaimer

  1. The Company is not liable for delays or inability to perform due to force majeure.
  2. The API User shall resolve disputes with third parties at their own cost and responsibility.
  3. The Company is not responsible for data loss or damage stored on its servers.
  4. The Company is not liable for damages unless caused by willful misconduct or gross negligence. If the User qualifies as a consumer under the Consumer Contract Act, compensation is limited to the service fees received.
  5. The Company does not guarantee its emails or content are virus-free.
  6. Information or advice from the Company does not entail liability.
  7. The Company does not guarantee compatibility with all linked services.

Article 8: Required Equipment for API Service Use

API Users shall prepare and manage, at their own cost and responsibility, the computers and communication environments necessary to use the API Service. The Company shall not be liable for any delay or inability to use the API Service due to malfunction or inadequacy of such equipment or environments.

Article 9: Prohibited Conduct

In using the API Service, API Users must not engage in any of the following:

  1. Violate laws or these Terms.
  2. Infringe the rights, interests, or reputation of the Company or other third parties.
  3. Transmit or post harmful computer programs or emails.
  4. Illegally access the Company’s servers or computers, or use unpublished methods or methods other than those stipulated in these Terms to use the App, Site, or API Service (e.g., using others’ login information).
  5. Copy, transmit, reproduce, distribute, or otherwise provide any part of the API Service’s content to third parties without permission.
  6. Sell, lease, distribute, or license the API Service for commercial purposes without prior written consent from the Company.
  7. Use the API Service to control facilities that may pose serious threats to human life, body, or property.
  8. Abuse the API Service beyond a reasonable and appropriate scope.
  9. Use the API Service in a manner contrary to its intended purpose, or in any inappropriate manner as judged solely by the Company.
  10. Use the API Service in conjunction with any of the following services or services primarily intended to promote such:
  • Services that unlawfully collect or use personal information or passwords without consent.
  • Malicious software or tools that disrupt, destroy, or limit hardware or software functionality.
  • Services that infringe intellectual property, publicity, privacy, or other rights.
  • Illegal or potentially illegal content.
  • Services lacking proper licensing or authority.
  • Services that incite or relate to crime.
  • Content that attacks or harms others.
  • Obscene or offensive content.
  • Firearms, ammunition, or items intended primarily as weapons.
  • Explosives or hazardous materials.
  • Human bodies, organs, cells, or blood.

Article 10: Handling of Personal Information

  1. The Company shall handle personal information of API Users in accordance with its Privacy Policy (https://www.4login.jp/privacy-policy).
  2. The Company shall use personal information of API Users within the scope of the following purposes:
    • (1) To communicate updates, maintenance, and important notices regarding the API Service
    • (2) To respond to inquiries or requests from Users.
    • (3) To generate statistical data that cannot identify individuals, through aggregation and analysis.
    • (4) To improve the API Service and develop new services.
    • (5) For advertising and promotional purposes.
  3. The Company shall not disclose or provide personal information to third parties without the API User’s consent, except as otherwise permitted by law.

Article 11: Management of User Attribute Information

  1. API Users shall be responsible for managing User Attribute Information obtained through the use of their Linked Services. The Company shall not be liable for any damage or liabilities arising for the API User, Users, or third parties.
  2. API Users shall manage acquired Authentication Information and User Attribute Information as confidential information, strictly in accordance with laws and administrative guidelines. API Users must pay due attention to the protection of the privacy of Authenticated Users, implement necessary security measures to ensure privacy, and agree not to disclose or leak such information to third parties or use it for purposes other than those clearly stated to Authenticated Users in advance. The Company shall not be liable for any damage resulting from unauthorized use of User Attribute Information.

Article 12: Scope and Fees of Free and Paid Services

  1. The Company may provide free services and paid services related to the API Service. The contents and fees for free and paid services shall be as specified in separate explanatory materials or on the Website. The Company may change the usage fees if deemed necessary, and will announce such changes, the revised fees, and the effective date by posting them on the Website or by other appropriate means. In the case of a fee increase, the Company shall provide at least 30 days’ notice in advance.
  2. The Company may change part or all of the free service to paid service at its discretion without obtaining prior consent from the API User.
  3. The Company may change the usage fees for part or all of the paid services at its discretion without obtaining prior consent from the API User.
  4. Payment of fees for paid services shall be made using the payment method designated by the Company.
  5. The Company shall not provide any refunds or reimbursements of already received usage fees under any circumstances.

Article 13: Suspension of API Service Use

An API User may suspend the use of the API Service by following the prescribed procedures. Upon suspension, the API User shall lose all rights related to the use of the API Service and shall not have any right to make claims against the Company due to such suspension.

Article 14: Suspension or Termination of Use for Specific API Users

The Company may, without prior notice, suspend the use of the API Service or revoke the API User qualification of a specific API User if any of the following apply. The Company shall not be liable for any damages caused to the API User due to such actions:

(1) If the API User violates laws or these Terms.

(2) If the API User commits any fraudulent act related to the use of the API Service.

(3) If the Company deems it appropriate for other reasons.

(4) If the API Service has not been used for more than 12 months since the last use (except for API Users who have continuously subscribed and paid for paid services).

Article 15: Use and Deletion of Data

  1. API Users agree in advance that information input or logs viewed while using the API Service, Application, or Website will be stored on servers managed by the Company.
  2. The Company may use the various types of information obtained during the use of the API Service by processing it into statistical data that does not identify individuals and may provide such data to third parties.
  3. If the API User suspends use or the Company terminates use or qualification under Article 14, the Company may delete or retain all data acquired and stored on its servers at its discretion, and the API User shall not object.
  4. If legally requested, such as by a court order for evidence submission, the Company may provide information related to the API User to external parties without the API User’s consent, within the minimum scope required.

Article 16: Changes or Termination of the API Service

The Company may change, add, or terminate part or all of the API Service without notice to API Users at its discretion. However, if the entire API Service is to be terminated, the Company shall give at least 30 days’ prior notice by means it deems appropriate. The Company shall not be liable for any damages resulting from such changes or termination.

Article 17: Revisions to These Terms

The Company may revise these Terms. In such cases, the Company shall notify or announce the revised content and the effective date on the Website.

Article 18: Notifications

  1. When contacting or notifying API Users, the Company shall, in principle, use email. The email address used for such communication shall be the one registered as part of the API User’s member information on the Application. API Users may change their registered email address at any time but must ensure it can receive communications from the Company. The Company shall not be liable for any disadvantage suffered by the API User due to failure to receive such notifications.
  2. The Company may send advertisements or promotional emails regarding the API Service, or products and services of the Company or third parties, to the email address registered by the API User. The API User agrees to this.

Article 19: Prohibition of Transfer and Confidentiality

API Users shall not transfer or assign their contractual status, rights, or obligations to any third party without the Company’s consent. API Users shall keep confidential any confidential information regarding the Company’s operations learned through this contract.

Article 20: Intellectual Property Rights

  1. All intellectual property rights including patents, copyrights, and other rights related to the functions of the API Service, the software realizing it, the Website’s content, manuals, and these Terms are owned by the Company. Except as expressly provided herein, this contract does not grant any rights to the Company’s content or other intellectual property.
  2. API Users shall retain intellectual property rights to information they register in the API Service or Application. However, API Users shall not assert such rights against Passlogy Co., Ltd.
  3. By starting to use the API Service, API Users are deemed to have agreed to the above.

Article 21: No Waiver and Severability

  1. Failure to exercise or enforce any right under these Terms shall not constitute a waiver of such right.
  2. If any provision of these Terms is found to be invalid or illegal in any jurisdiction, the remaining provisions shall remain in full force and effect.

Article 22: Entire Agreement

This agreement constitutes the entire agreement between the API User and the Company, superseding any prior negotiations, promises, or understandings, whether written or oral.

Article 23: Language

Translations of these Terms, the Privacy Policy, and all related documents are provided for convenience only. The Japanese version shall govern and be used for interpretation of these Terms and other related agreements.

Article 24: Governing Law and Jurisdiction

These Terms shall be governed by and construed in accordance with the laws of Japan. The Tokyo District Court shall have exclusive jurisdiction as the court of first instance over any disputes related to these Terms.

Supplementary Provisions:

These Terms shall come into effect as of September 5, 2017.

Established: September 5, 2017
Revised: November 1, 2019 (Article 15)
Revised: March 30, 2022
Revised: April 17, 2025