Information Security Policy
Preamble
Honyaku Center Inc. (hereafter referred to as “the Company” or “we”) provides translation and other related services based on the Company’s corporate philosophy: Through industrial technology translation, we aim to be a company that supports the international activities of domestic and foreign companies, making contributions to international economic and cultural exchange.
It is important to build and maintain a trusting relationship with customers in order that customers have confidence in the services we provide. To that end, we must firmly control customer information that we come to know through provision of services, as well as the Company’s information assets, to protect them from various threats. We set forth herein the Company’s Information Security Policy, and pledge to implement and improve it on a continuous basis.
This Information Security Policy is set as the general policy in development and operation of the information security management system, for the purpose of protecting customers’, as well as the Company’s, information assets from any internal or external threat posed either intentionally or accidentally, in order to maintain stable business activities.
General Policy
-
Information security management system
An information manager shall be appointed to take responsibility for company-wide information security. The information manager is responsible for the development and operation of the information security management system. -
Information security management system development
Organizational, personal, physical, and technical information security measures shall be taken to organize the Company’s information assets, analyze and evaluate potential risks to assets, and protect information assets from any threats to the confidentiality, integrity and/or availability of such assets. These measures shall be improved upon and improvements implemented on a continual basis. -
Compliance with laws and regulations
In all aspects of development and implementation of information security measures, and information security management rules, applicable laws and regulations shall be strictly observed. -
Education and training
Periodic education and training on information security shall be provided to all officers and employees to instill the importance of information security, and proper handling and management of information. -
Prevention and handling of incidents
The Company’s officers and employees shall endeavor to ensure the prevention of information security incidents and, should an incident occur, such incident shall be reported immediately to the appointed information manager and emergency measures shall be taken when necessary. The cause of the information security incident shall be analyzed to take preventive measures. -
Business continuity management
The Company’s business continuity shall be secured by inhibiting business interruption due to contingent disaster, accident, negligence, and/or intentional loss or misuse of information assets to any and all extents possible.
Scope of application
All officers and employees
Revision
Periodic revision and compliance audits shall be conducted to operate the information security management system correctly and securely.
Measures against violation
Should a violation of this policy occur, the party responsible may be subject to reprimand or termination based on the Company’s rules and the terms of employment. Should a material violation which poses a threat to the Company’s information assets be discovered, termination and possible legal action may be taken.