INFORMATION SECURITY POLICY
The Nippon Kabaya Ohayo Holdings Group (hereinafter referred to as “our group”) must remain a trusted corporate group in society. Proper management of information assets is a fundamental element, and if an information security incident occurs, it could cause significant inconvenience to customers, business partners, and suppliers, and pose a serious threat to our group’s business continuity.
Information is the driving force of business. As part of our corporate social responsibility, we believe protecting information appropriately is paramount, and we manage and utilize information assets properly.
Objective
This Information Security Basic Policy of the Nippon Kabaya Ohayo Holdings Group (hereinafter “this policy”) sets forth the basic principles of information management for all companies in our group (hereinafter “group companies”) and aims to ensure the proper management and use of information assets.
Applicable Personnel
This policy applies to all directors, auditors, employees (including part-time and contract workers), temporary staff, and others working under the control of group companies (collectively referred to as “employees”).
Scope of Information Assets Covered
This policy applies to all information assets useful in business activities owned by group companies, as well as those entrusted from external sources such as customers and business partners. “Information” includes all tangible and intangible assets such as paper-based documents, electronic data, and manufacturing technology.
Establishment of Management System
Each group company will establish an information security management system to promote information security activities and ensure proper management and use of information assets.
Education and Awareness
To ensure compliance with this policy and thorough implementation of information security activities, each group company will regularly and continuously conduct training and awareness programs for employees.
Compliance Monitoring
Group companies will periodically analyze and evaluate risks related to information assets, implement necessary security measures based on evaluation results, and ensure proper management of those assets.
Continued Improvement
We will continuously review and improve our information security system and related regulations to implement appropriate measures in line with technological and legal changes.
Established: December 1, 2017
Nippon Kabaya Ohayo Holdings Inc.
CEO: Yoko Yamazaki
“SECURITY ACTION” is a program run by the Information-technology Promotion Agency (IPA) that allows small and medium-sized enterprises to declare their commitment to information security. Nippon Kabaya Ohayo Holdings Inc. has declared its participation at the “Two-Star” level.
