Home » Management Philosophy » Information Security Policy
Basic Policy on Information Security
UMEDA KOGYO Co.,Ltd (hereinafter referred to as “the Company”) possesses many information assets and utilizes them on a daily basis in order to conduct business activities normally and smoothly and to contribute to society. In addition, the Company actively incorporates information technology into its management to improve operational efficiency and customer service.
The information handled by a company’s information systems includes not only important information for business operations, but also personal and confidential information of customers that could have extremely serious consequences if leaked outside the company. Therefore, it is essential to protect information and information systems from various threats not only to protect the company’s business but also to protect customers’ personal information, confidential information, etc. For this reason, it is essential that all officers and employees who handle information are aware of the importance of information security. Therefore, we have established an Information Security Policy as a comprehensive standard for information security measures to be complied with by all officers and employees who handle information in their respective roles, and we will ensure the necessary information security by establishing and operating implementation procedures in accordance with the policy.
Security of Information Assets
We assess the risks associated with information security and take appropriate measures to ensure the confidentiality, integrity, and availability of information.
Compliance with Laws and Regulations
We comply with laws, regulations, and contracts related to information security.
Education and Training
We will provide necessary information security education and training to our directors and employees to improve their awareness and literacy regarding information security.
Incident Response
We will respond promptly and appropriately to information security incidents. We will establish a reporting system for incidents and take appropriate measures to minimize damage and prevent recurrence.
Continuous Improvement
We confirm the appropriateness and effectiveness of information security measures through periodic audits and evaluations, and work for continuous improvement.
July 1, 2023
Umeda Kogyo Co.,Ltd
Hidenori Umeda, President and Representative Director
ISO/IEC 27001:2013
On October 19, 2023, we obtained ISO/IEC 27001:2013 certification.
ISO/IEC 27001:2013 is an international standard for information security management systems (ISMS). It provides a framework for organizations to manage the confidentiality, integrity, and availability of information in a well-balanced manner and to make effective use of information.