Information Security / Personal Information Protection
The Amano Group recognizes that one of our important management issues is to ensure that all information related to our business activities is shared and utilized appropriately under secure and reliable management, and has established the “Information Security Basic Policy” as part of the strengthening of internal controls.
Amano Information Security Basic Policy
As a company that provides products, solutions, and services related to time and air, Amano Corporation is committed to information security measures to ensure that our products and services are used safely and securely while creating new value through the use of information.
To this end, all of our officers, employees, and all others who handle information at our company will deepen their awareness of the importance of information security in the environment, people, equipment, and cyberspace involved in the process of creating and continuing to provide products and services to our customers, and will strive to prevent and correct information leaks, etc. and maintain and impove social credibility and business continuity based on the following “Information Security Basic Policy”.
Scope of Application
This policy applies to all tangible and intangible information that Amano handles. In addition, we will instruct third parties other than Amano to comply with this policy when handling information handled by Amano.
Information Security System
Based on the “Basic Compliance Policy,” Amano will establish a companywide system for information security by preparing information security-related regulations and appointing information managers in each department.
Compliance with Laws and Regulations, etc.
Amano will comply with laws, regulations, and other norms related to information security, including personal information protection, as well as customer contracts.
Information Asset Management
Amano takes measures to maintain the confidentiality, integrity, and availability of our information assets.
- Confidentiality : Limit access to information assets to authorized individuals only.
- Integrity : Protect the accuracy and completeness of information assets.
- Availability : Ensure that information is available in a timely manner when needed.
Prevention and Response to Information Security Incidents
Amano will take all possible measures to prevent information security incidents. In the unlikely event of an accident, Amano will take appropriate measures to prevent recurrence.
Information Security Education
Amano provides all officers and employees with training and education on information security in order to deepen their understanding of the importance of information security and to improve their skills.
Continuous Improvement
Amano will continuously review and improve the Information Security Basic Policy and the regulations related to information security.
Enacted: March 24, 2008
Reviced: September 1, 2023
Information Security Management/ Personal Information Protection System Diagram
We are committed to strengthening information security through the following system.
Information Security Management System
We continuously run the PDCA cycle related to information security management and personal information protection in accordance with the “Information Security Basic Policy”and the “Personal Information Protection Policy”.
Personal Information Protection
Since we think that it is our social responsibility to properly protect all personal information, we have established a “Personal Information Protection Policy”. We operate a personal information protection management system based on this "Personal Information Protection Policy" to ensure the proper handling and protection of personal information. In addition, in February 2014, we received the PrivacyMark System, a third-par ty cer tification for the protection of personal information, and have continued to receive this certification since then.
Information Security/Personal Information Protection Education
In order to protect information security and safeguard personal and confidential information,
everyone must be proact ively aware of the dangers and take appropriate actions.
We regularly conduct information security management and personal information protection
education (e-learning) for all executives and employees. By staying updated on changes in
the social environment and incident cases, we strive to raise awareness of the latest information
security risks and improve the effectiveness of incident prevention. Additionally, we provide
targeted attack e-mail response training to enhance each individual's ability to detect
suspicious e-mails, including improving their detection skills and understand initial response.
We also provide education for personnel handling My Number and hierarchical education for
managers every year.