Information Security Policy
GignoSystem Japan, Inc. operates a data processing service business that is driven primarily by our Design, development and operation of contents and information providing services for the internet and the Systems Engineering Business. We therefore have a responsibility to implement, maintain, and improve information security management systems and to provide customers with quality services and products that are secure and reliable. Aware of this responsibility, we would like to take this opportunity to determine our Basic Information Security Policy as follows, and express our commitment to this policy.
- We will employ appropriate security measures for all information assets relating to business activities, including information on development products, confidential technical information, sales and customer information, personal information of customers, and personnel and employment information.
- We will create an information security rule book and internal regulations such as ethics regulations for the handling of information, and employ appropriate information security measures according to the information handled.
- We will work to foster improved awareness of information security amongst executives and all employees, and provide regular and ongoing information security training to ensure that security measures are executed in full.
- Executives and all employees declare that they will act in observance of the information security rule book, ethical regulations for the handling of information, and so on. In the event that the regulations are violated, penalties shall apply in accordance with employment regulations and other internal regulations.
- All laws and ordinances, regulations and other provisions, as well as contracts with clients and business partners relating to information security shall be strictly observed.
- We shall assess the security risks for information assets through appropriate risk assessments and promote the implementation of effective security measures in light of the outcome of such assessments.
- Audits of management policies relating to information security shall be conducted on a regular basis to ensure that they are maintained and improved.
- Information security measures shall be promoted by the "Information Security Group" established within the Company.
Established on April 1, 2004
Revised on September 3, 2007
Revised on January 26, 2009
GignoSystem Japan, Inc.
Kazuhiko Numajiri
President and Representative Director
 【Details of ISO/IEC 27001:2005 / JIS Q 27001:2006 registration】 | |
|---|---|
| Company name | GignoSystem Japan, Incorporated |
| Assessed areas | All organizations and all employees of GignoSystem Japan, Incorporated and United World Music, Incorporated (our subsidiary company). |
| Registered businesses | Design, development and operation of contents and information providing services for the internet, system solution business activities and commerce business. Statement of Applicability, issued on 9/Jul/2009, Version 5 |
| Certification standards | ISO/IEC 27001:2005 / JIS Q 27001:2006(Ver.2.0) |
| Registered Number | IS84139 |
| Date of updated registration | August 6, 2010 (First date of attested registration:Sept. 7, 2004) |
| Assessment and registration body | BSI Group Japan K.K. |
| Accreditation organizations | The American National Standards Institute (ANSI) -American Society for Quality (ASQ) National Accreditation Board (ANAB) and Japan Information Processing Development Corporation (JIPDEC) |
