Information Security Policy
Basic philosophy
ZenmuTech, Inc. (hereinafter referred to as the “Company”), conducts business on the basis of a philosophy by which it seeks to change the world through the safe and secure use of information.
Information assets that we handle in the course of our business, including information on customers, are exceedingly important as part of the foundation on which the Company operates. Anyone handling information assets, such as an officer or employee, who is aware of the importance of protecting information assets from such risks as leakage, damage, and loss shall comply with this Policy and carry out activities to maintain information security in terms of the confidentiality, integrity, and availability of information assets.
Information assets that we handle in the course of our business, including information on customers, are exceedingly important as part of the foundation on which the Company operates. Anyone handling information assets, such as an officer or employee, who is aware of the importance of protecting information assets from such risks as leakage, damage, and loss shall comply with this Policy and carry out activities to maintain information security in terms of the confidentiality, integrity, and availability of information assets.
Basic philosophy
- In order to protect information assets, the Company shall formulate an Information Security Policy and regulations related thereto, carry out operations in accordance therewith, and comply with laws, regulations, controls, and other norms and standards related to information security and the terms and conditions of agreements concluded with customers.
- The Company shall clarify standards for analyzing and assessing such risks as leakage, damage, and loss as they pertain to information assets, set forth a systematic method by which risk assessments can be conducted, and regularly conduct risk assessments. In addition, the Company shall implement the necessary and suitable security measures according to the results thereof.
- The Company shall establish an information security system under the jurisdiction of the officer in charge and clarify the authority and responsibility as they relate to information security. In addition, all employees shall be regularly educated, trained, and instructed to ensure that they are aware of the importance of information security and handle information assets in an appropriate manner.
- Inspections and audits shall be regularly conducted on the status of compliance with the Information Security Policy and on the handling of information assets, and corrective measures as they relate to any deficiencies or improvement items found through an inspection or audit shall be promptly implemented.
- The Company shall implement appropriate measures in response to the occurrence of an event or incident involving information security and establish response procedures in advance to minimize any damage that might occur in the unlikely event of such an event or incident. In the event of an emergency, a response shall be immediately undertaken, and appropriate corrective measures shall be implemented. For incidents that could cause operations to be suspended, the Company shall establish and regularly review a framework for the management thereof to ensure the continuity of our business.
- The Company shall establish, implement, and regularly review and update an Information Security Management System that sets forth targets for the realization of our Basic Philosophy.
Enacted on October 8, 2023
Zenichi Taguchi, Representative Director
ZenmuTech, Inc.
Zenichi Taguchi, Representative Director
ZenmuTech, Inc.