Information Security Policy

Information Security Basic Policy

ROKITECHNO aspires to be a “100-Year Company” and aims to be a trusted “number one partner” by meeting societal expectations across all areas of its business activities.
For this reason, the entire Group recognizes the need for information security measures to appropriately protect all information assets handled in the course of our business activities, including those entrusted to us by our business partners, prevent leakage or misuse, and maintain our corporate competitiveness. Accordingly, we have established this Information Security Policy to serve as our fundamental policy governing future initiatives.

1. Compliance with Laws, Regulations, and Contractual Requirements

   We will comply with all applicable laws, regulations, internal rules, and social norms related to information security in the countries and regions where we operate, and fulfill all contractual obligations with our business partners.

2. Establishment of Internal Systems

   We will clearly define the roles and responsibilities within our internal organizations and implement timely and appropriate measures to address the ever-evolving risks to information security, including increasingly sophisticated cyberattacks and attempts at unauthorized access.

3. Security Measures

   We will establish rules for appropriately handling information at each stage of the information asset lifecycle (creation, use, storage, and disposal) and implement specific physical, technical, and personnel-based measures.
   We will also clearly define sets of regulations and guidelines based on the various rules, roles, and responsibilities involved, raise awareness of these regulations and guidelines throughout the organization, and ensure that they are accessible at all times.

4. Responses to Violations and Incidents

   In the event of a violation of information security-related laws or regulations, a breach of contract, or other incident, we will respond in an appropriate manner, implement corrective actions, and take steps to prevent recurrence.

5. Continuous Improvement

   We believe that ensuring product quality, work quality, and employee quality––the three core elements of quality assurance––is key to earning the trust and confidence of our business partners. In line with this belief, we will work to continuously improve our information security measures, avoiding complacency, and provide all employees with ongoing training to raise awareness and knowledge.