Basic Policy on Information Security
In order to appropriately manage and use its information assets and information systems, the Group has established a Basic Policy on Information Security, and will strive to ensure a stable management base by implementing and promoting this policy.
- Compliance with laws and regulations
We will comply with laws, regulations, contractual requirements, and internal rules regarding information security. - System
We will establish an information security management system and work to ensure information security. - Measures
We will strive to prevent information security incidents by implementing appropriate information security measures for each information asset, as well as formulating a business continuity plan (BCP) and recovery plan to ensure prompt recovery and prevent recurrence in the unlikely event of an incident. - Education
We will continuously educate our employees on regulations, standards, etc., related to information security in order to improve their information security literacy. - Inspection and improvement
We will regularly evaluate the actual state of information security management and strive for continuous improvement.
Management system
Operation of Information Security Committee
We have established the Information Security Committee, headed by the executive in charge of information security management, and it has representatives from each sites as members. It deliberates on and examines information security management within the Company.
Implementation of information security audit
We regularly audit the actual state of information security management and strive to optimize it.
Handling of confidential information of customers and business partners
Confidential information of customers and business partners is classified from our confidential information, and we have established an appropriate information management system according to customers and business partners and are implementing efforts to protect the information.
About Protection of personal data
We are working to protect personal information by stipulating a personal information protection policy, establishing a mechanism for protecting personal information, and making all employees fully aware of the importance of protecting personal information.
Education on Information Security
A self-inspection on information security is conducted every year for all employees including temporary staff.