Security Policy

1. Purpose

The FUSO GROUP (hereinafter referred to as “the Group”) recognizes that protecting information assets from accidents, disasters, crimes, and other threats is an important management issue in order to earn the trust of customers and society. In order to maintain and improve information security, we have established this Information Security Policy (“the Policy”), with which all employees, officers, and dispatch employees (collectively “Members”) of the Group shall comply.

2. Establishment of an Information Security Management System

Based on the Policy, the Group will establish a system that enables ongoing activities to manage and supervise overall information security measures.

3. Compliance with Laws and Regulations

In order to ensure that the Policy is followed with a common understanding of the importance of information security and to comply with related laws, regulations, and other relevant items, the Group will establish internal rules and regulations to ensure thorough compliance with the Policy.

4. Implementation of Information Security Measures

The Group implements appropriate measures with respect to organizations, personnel, physical elements, and technical elements to prevent accidents such as unauthorized access, leakage, falsification, loss, and damage to information assets.

5. Implementation of Information Security Education and Training

The Group raises awareness of information security among all Members, providing ongoing security education and training to ensure appropriate management of information assets.

6. Continuous Improvement

The Group will strive to continuously strengthen and improve the information security of the entire organization to adapt to requirement changes from related laws, regulations, and other relevant items, as well as to new information security risks such as those from cyberattacks.

7. Response to Information Security Incidents

The Group strives to prevent the occurrence of information security incidents, and in the event of an incident, promptly investigates the cause and takes appropriate measures, including recurrence prevention measures.