Information Security

　We consider the prevention of confidential information leakage and defense against external attacks on information as indispensable for business activities. We have an information security system on the basis of the recognition that not only our company’s information, but also our clients’ information is property which needs to be appropriately controlled and handled.

Fundamental way of thinking

　We are working to strengthen security and protect ‘‘company information’’ and ‘‘client/customer information’’ from threats such as information leaks and cyberattacks. Based on the premise that incidents and accidents are unavoidable, we are working to build an information management system and improve its operation.

Establishment of information security policy

　We have established an information security policy under the name of Corporate Officer of Information Systems Div.

Information security policy

1 .

We regard information security and cyber security as an important management issue, and after establishing an information security and cyber security management system, we will continue to engage in information security activities.
2 .

We evaluate and analyze information security risks and implement appropriate human, organizational, technical, and physical security measures.
3 .

3. We will continue to provide education and training on information security and cyber security (including automobiles) to further improve the information security level of all employees.
4 .

When an information security incident occurs, we will promptly report it to all concerned parties, take initial measures to prevent the further spread of damage, investigate the cause, and take appropriate recurrence prevention measures.
5 .

We regularly inspect all information security and cyber security initiatives, such as management systems, compliance with rules, and the effectiveness of measures, and carry out continuous correction and improvement activities.

Establishment of vulnerability monitoring and incident response guidelines

　As one of our corporate social responsibilities, we will thoroughly implement information security measures and protect our information assets. We will strengthen governance by assuming risks, formulating rules, and building systems for their management and operation. By doing so, we strive to ensure that the use of information does not impair the rights and interests of the information providers.