![[Image]SANEI HYTECHS](/en/shared/img/logo_w.png){kind=logo}
Commitment to Information Security
SANEI HYTECHS considers the protection of assets, including design and development information, customer information, and all related personal data, as its utmost responsibility in corporate activities. We are committed to complying with laws, regulations, societal norms, and contractual provisions related to information security. In line with this commitment, we have established an Information Security Management System (ISMS) and integrate it with our business strategy. Through these efforts, we strive to be a trusted and reliable company for the future.
Information Security Policy
1.Objectives of Information Management
- We are committed to transparency in this management system, providing an environment where all employees can engage in their activities.
- To safeguard our information assets, we conduct regular risk assessments, analyses, and implement corresponding measures to ensure confidentiality, integrity, and availability.
- We regularly educate and raise awareness among all relevant employees about information security, fostering proactive individual behavior.
- All employees operate in accordance with established rules.
- We routinely review our daily activities in protecting information assets, working towards the prevention, detection, and improvement of any issues that may arise.
- Continuously striving for better results, we aim to enhance and refine our established Information Security Management System.
January 1, 2013
SANEI HYTECHS co.,ltd.
President & CEO Yoshihiro Mabuchi
SANEI HYTECHS co.,ltd.
President & CEO Yoshihiro Mabuchi
Information Security Committee
- The top management will establish and operate the Information Security Committee.
- The top management allocates responsibilities and authorities related to information security to the Information Security Committee and the Internal Audit Manager.
- The top management communicates these roles, responsibilities, and authorities to employees.
The top management structure is presented in the 'Information Security Committee Organizational Chart.
Information Security Committee
Roles of the Information Security Committee:
- Development of Risk Response Plans:
Conducts information security risk assessments and determines corresponding measures and management strategies. - Establishment of Execution Structure:
The top management provides clear policies on information security and actively participates in their execution.
Information security measures are led by top management, implemented systematically, and coordinated with relevant stakeholders. - Implementation of Management Strategies:
Creates an inventory of assets, identifies and manages critical assets.
Manages access and operation permissions to ensure access only to necessary information. - Education and Training:
Conducts education (twice a year) and training on information security and confidentiality for all employees. - Operational Management:
Plans, implements, and manages necessary processes to meet information security requirements.
Evaluates and corrects the effectiveness of information security performance and management strategies. - Management of Business Resources:
Allocates necessary management resources to implement information security measures. - Security Incident Management:
Establishes and follows a confidential incident response flow to handle information security incidents. - Communication with Relevant Authorities (Police, JIPDEC, Business Partners, Contractors, etc.):
Identifies relevant authorities and their contacts, establishing and maintaining a system for easy communication when necessary.
Information Security Management System ISO/IEC 27001
We have obtained JIS Q 27001:2014 (ISO/IEC 27001:2013) certification.
Scope of the Audit
| Registered Organization Name | SANEI HYTECHS co.,ltd. Planning Department Information System Division |
|---|---|
| Location | 311-3 Koyasu-cho, Chuo-ku, Hamamatsu-shi, Shizuoka 435-0015, Japan |
| Related Branches | Kansai Design Center Server Room Tokyo Design Center Server Room Engineering Development Center Server Room |
| Number of Related Branches | 3 locations |
| Registered Scope | Operation and management of in-house information systems (Declaration of Applicability: Version 1.0, March 10, 2021) |
Registration Date September 24, 2021
Expiry Date September 23, 2024
Expiry Date September 23, 2024
