Information Security Policy

1. Purpose

ERISAPO MIRAI Co., Ltd. (hereinafter referred to as "our company") recognizes the importance of information security and has established the following basic policy regarding information security in order to protect customer information, including personal information, that we handle from theft, leakage, loss, and unauthorized access.

2. Scope of Application 

This policy applies to customer information, including personal information, that we handle, and all employees are obligated to protect this information.

3. Basic Information Security Policy

Confidentiality: We maintain the confidentiality of customer information, including personal information.

Integrity: We will keep your information accurate and complete.

Availability: We will ensure that the information you need is available when you need it.

4.  Handling of Personal Information

We will comply with laws and regulations regarding the collection, use, and provision of personal information, clarify the purpose when handling personal information, and collect and use it only to the extent necessary. Furthermore, when providing personal information to a third party, we will always obtain the prior consent of the individual.

5.  Information Security Management System

We appoint a person in charge of managing information security, who will oversee company-wide information security measures. We also regularly audit information security to verify the effectiveness of the measures.

6.  Information Security Education

We provide education and training on information security to all employees, and provide information security education to new employees when they join the company.

7.  Technical measures

We will take measures to prevent unauthorized access to our network and systems, and will install antivirus software on the devices we use and update it regularly.

8.  Physical measures

Customer information, including personal information, will be stored under lock and key, regardless of whether it is in paper form, on a PC terminal, etc. In addition, when storing the information, a controlled area will be set up and access will be restricted.

9.  Response in the event of an accident

In the event of an information security incident, we will promptly report it and take measures to minimize the impact. We will also take measures to prevent recurrence and strive to prevent similar incidents from occurring.

10. Continuous  Improvement

This policy and information security measures will be reviewed regularly and continuously to build an even more robust information security system.

Established November 20 , 2024

ERISAPO MIRAI Co., Ltd.                               

Representative Director Makoto Numasa