• Japanese

Security Policy (Basic Policy)

【Ⅰ. The declaration of manager】

For being in business continuously and stably, it is important matter to take proper safety measures as to information assets our company have. Information assets are most important and indispensable for us. We consider that taking care of information assets properly with high reliability turns to development and improvement.

This security policy is our basic one regarding safety measures against information assets and it contains necessary directions to maintain security. The security policy also means to realize to protect properly all of information assets our company possess.

All of the staffs in this company including manager shall participate in and also support this security policy to make the policy works effectively and stability. There is no exception regarding this security policy.

【Ⅱ. Information assets】

2 - 1. What are information assets?

Information assets is the general term of information, information system and the required matter to be well protected or used them. It contains not only hardware, software, network and any kind of data file, but also personnel and document who or which is required to complete business, or customer's information which the staff gets during business.

2 - 2. To classify information assets.

Information assets are classified according to each of their importance, then start to be managed.

2 - 3. Access to information assets.

Our company only permit the access which isb based on reasonable necessity to be used information assets properly in accordance with it's purpose.

2 - 4. The decision-making of our company.

The decision-making of our company is not contrary to the appropriate usage of the assets of information. All of managers are prohibited to order the act in violation of security policy to the staff.

【Ⅲ. Security management system】

The security management system in our company is constructed by whole company management, department security management and security inspection.

3 - 1. Whole company management.

This company set up security committee to maintain and manage security in same point of view from whole department and maintain necessary security management system.
Security committee establish every kinds of regulation regarding security policy or security, and the committee is in charge of the duty to work efficiently.

3 - 2. Department security management.

At the department, the head of the department takes responsibility for, and carry out to inform, maintain and manage security measures. It is not permitted to transfer this responsibility to the other staff. Security committee guide and support to manage information assets of each department.

3 - 3. Security inspection.

Our company appoint the person who is in charge of security inspection as the person inspects the work is concerned with security measures. The person is in charge of the inspection inspects what the work of each department is based on security measures is carried out.

【Ⅳ. Participation and duty of all staff 】

4 - 1. Duty of staff.

All staff (including director) shall take part in carrying out the security measures.

4 - 2. To carry out education.

Our company shall carry out proper education regarding security measures to all staff.

4 - 3. Security about other person.

Our company shall make sure to carry out necessary security measures regarding the security among other person in the company entrusts our business.

4 - 4. To settle on ISMS manual and to carry out it.

Our company settle on ISMS manual which is based on this security policy and as how to carry out this specifically then our company shall let it work efficiently.

4 - 5. Penal regulations.

All staff follow this security policy and ISMS manual which the security policy is based on. In case some staff violates these, he or she becomes the object to be punished by office regulations. The object to be punished may not only be the person concerned directly who violates the security but also the person who is in charge of corresponding manager of information assets like the head of corresponding department.

【Ⅴ. To follow the law regarding information assets】

All staff shall follow the law regarding using information assets to complete the work and hereby obey this.