Procedures for requesting disclosure, etc.
<About safety control measures>
Regarding personal information, we take the following measures to prevent leakage, loss or damage and to manage personal data appropriately.
- Formulation of basic policy
- We ensure the proper handling of personal information and have established a basic policy regarding contact points for inquiries and complaints.
- We have established personal information handling regulations regarding the handling method, responsible person, person in charge, and other duties for each stage of acquisition, use, storage, provision, deletion, disposal, etc. of personal information.
- Systematic security control measures
- Appoint a person in charge of handling personal data (Personal Information Manager).
- Clarify the employees who handle personal data and the scope of personal data handled by such employees.
- We will establish a system for reporting and contacting the person responsible for personal information management in the event that we find facts or signs of violations of laws and internal regulations.
- Regarding the handling of personal information, we will conduct regular self-inspections and audits by other departments and external parties.
- Personnel security control measures
- We regularly provide training, etc. to our employees regarding points to note regarding the handling of personal information.
- Matters concerning the confidentiality of personal information are described in the employment regulations.
- physical security measures
- We will take measures to prevent theft or loss of equipment, electronic media, documents, etc. that handle personal information.
- When transporting equipment, electronic media, etc. that handle personal information, including movement within the office, we will implement measures to prevent personal information from being easily identified.
- Technical safety control measures
- We have access controls in place to limit the scope of who is responsible and what personal information we process.
- We have introduced a mechanism to protect information systems that handle personal information from unauthorized external access or unauthorized software.
- Understanding the external environment
- When we handle personal data in a foreign country, we will implement security control measures after understanding the system regarding the protection of personal information in that foreign country.