Japanese version(日本語)

Indonesian version(Bahasa Indonesia)

     

    Basic Principle

     RevComm, Inc. (the “Company”) and the Company’s subsidiaries and affiliates (collectively with the Company, the “Group”) conduct their business under the principle of “reinventing communication to create a society where people think of others.”

     The Group’s information assets, such as customer information, which the Group handles in the course of its business, are highly important as the basis for the Group’s management. The Group will take measures to maintain information security (i.e., the confidentiality, integrity and availability of information assets), by causing those who handle such information assets (including officers and employees who recognize the importance of protecting information assets from the risks of leakage, damage or loss) to comply with this policy.

     

    Basic Policy

  1. Compliance with Laws and Regulations, etc.
     The Group will comply with the laws and regulations, restrictions and other standards, as well as any contract terms agreed upon with its customers in relation to information security.
  2. Building Internal Control System
     In order to protect its information assets, the Group will: (i) formulate operational rules for information security, such as policies, regulations and manuals, and conduct its business in accordance therewith; (ii) establish an information security system in which responsible officers play the leading role; and (iii) clarify the authorizations and responsibilities related to information security.
     Further, the Group will conduct regular education, training and awareness building to ensure that all officers and employees recognize the importance of information security and handle information assets in an appropriate manner.
     The Group will regularly inspect and audit the compliance status of the operational rules for information security, such as policies and manuals, as well as the handling of information assets, and promptly take corrective measures if any defect or any matter requiring improvement is found.
     The Group will establish an information security management system stipulating the targets for achieving the aforementioned basic principle, and will implement and continuously review and improve the same.
  3. Classification of Information and Measures Related Thereto
     The Group will clarify the standards for analyzing and evaluating the existing risks of leakage, damage or loss relating to information assets, establish a systematic risk assessment method and conduct regular risk assessments. The Group will then take the necessary and appropriate security measures based on the results of such risk assessments.
  4. Emergency Responses to Breaches and Accidents, etc.
     The Group will establish responsive procedures to minimize any damage, and in the case of an emergency, the Group will promptly respond to the same by taking appropriate corrective measures. In particular, with respect to incidents which may lead to business suspension, the Group will establish a framework for the management of incidents and regularly review the same to ensure the Group’s business continuity.


    1. RevComm, Inc.
      Takeshi Aida, CEO

      Enacted: February 1, 2019
      Revised: May 1, 2020
      Revised: May 1, 2024