We will strive to protect all information assets held by the Site and comply with laws, regulations, and other standards related to information security, thereby building an extremely secure information security management system that is always trusted by society.

We have established internal rules based on our information security policy, and we have established a clear policy on the handling of not only personal information but also all information assets. We have also made it known both inside and outside the company that we will take strict measures against information leaks and other incidents.

We will establish a system to conduct internal audits to ensure compliance with information security policies, regulations, rules, etc. We will also continue to conduct external audits to obtain more objective evaluations. These audits are conducted in a planned manner to prove that employees and others comply with the security policy.

We will implement a system that reflects thorough measures to prevent unauthorized intrusion, leakage, alteration, loss, destruction, and interference with the use of information assets. As a countermeasures, we will thoroughly manage access to data and systems, such as working in high-security areas, granting access rights, and restricting database access rights.

We will provide thorough security education and training to all employees so that everyone involved with the information assets of the Site can carry out their work with information security literacy. We will continue to provide education and training so that we can respond to the ever-changing situation.

When entering into an outsourcing agreement, we will fully assess the eligibility of the subcontractor and request that it maintain a security level equal to or higher than that of the Site. In addition, in order to continue to confirm that these security levels are maintained appropriately, we will continue to review outsourced contractors and strive to strengthen the contracts.