1.Establishment of administrative control for information security

JASDEC group will establish a management framework to ensure the confidentiality, integrity and availability of information security. Officers and employees of the group understand their social responsibilities as part of a business organization and are sworn to confidentiality. We will comply with the Law concerning Book-Entry Transfer of Bonds and Stocks, etc. and the Law Concerning Protection of Individual Information and related regulations, as well as the rules of JASDEC group.

2.Establishment of thorough control system for information security

JASDEC group will take a thorough approach to protect information resources from unauthorized access, leakage, falsification, loss, destruction, or interruption of operation.

3.Advancing the understanding of information security

JASDEC group will provide information security education and training to all officers and employees to ensure that all users of information resources accomplish operations within the context of optimal information security.

4.Implementation and maintenance of internal audits

JASDEC group will conduct monitoring and internal audits for information security implementation and compliance with the related laws. The group will also carry out reviews in response to rapid changes in the environment.

5.Enforcement of control over contractors

When negotiating contracts with outside parties to handle private information, the Group will select only parties that satisfy reliability requirements for such operations. In addition, the group will monitor and periodically report on their activities, and work to prevent the leakage of information.

JASDEC is certified for ISO/IEC 27001:2005: Information technology - Security techniques - Information security management systems - Requirements.

Top of page