Security Policy
- Basic principle -
Hydro Technology Institute Co., Ltd. is committed to ensuring the security of information, operating and managing information appropriately, striving to carry out business responsibly, and aiming to be a "company trusted by society". Information assets, such as valuable customer information handled in our business are extremely important as our management base.
We recognize the importance of protecting information assets from risks such as leakage, damage, loss, etc., and ensure all employees comply with this confidentiality policy of information assets. We will carry out activities to maintain strict information management such as security, integrity, and availability.
- Basic policy -
1. In order to protect information assets, we will formulate an information security policy, conduct business in accordance with the policy, and comply with laws, regulations, and other norms related to information security, and agreements with customers.
2. We will clarify the criteria for analyzing and evaluating the risks of information assets such as leakage, damage, loss, etc., establish a systematic risk assessment method, and conduct periodic risk assessments. Based on the results, we will take necessary and appropriate security measures.
3. We will establish an information security system centered on the director in charge and clarify the authority and responsibility for information security. In addition, all employees recognize the importance of information security and regularly provide education, training, and awareness to ensure proper handling of information assets.
4. Regularly inspect and audit the status of compliance with the information security policy and the handling of information assets, and take corrective action promptly for any deficiencies or improvements that are found.
5. Take appropriate measures for the occurrence of information security events and incidents, and in the event that they occur, establish a response procedure to minimize damage in advance, and in the event of an emergency, We will respond promptly and take appropriate corrective actions. In addition, we will ensure the continuity of our business by establishing a framework for the management of incidents related to business interruption, and periodically conducting response tests, recovery tests, and reviews.
6. Establish and implement an information security management system that sets goals for realizing the basic philosophy, and continually review and improve it.
February 1, 2017
Hydro Technology Institute Co., Ltd.
President & CEO