The Company implements the security control measures below for retained personal data.
(i) Establishment of a basic policies
・Basic policies are established regarding “Observance of relevant laws and guidelines, etc.” and “Contact point for dealing with a complaint” etc. to ensure that personal data is handled properly.
(ii) Setting of rules for handling personal data
・Rules are set for handling methods, person responsible, person in charge, and their duties for handling personal data per stage, such as acquisition, use, saving, providing, deleting, disposing, etc.
(iii) Organizational security control measures
・The handling status of personal data is periodically self-inspected and audited by other departments.
(iv) Human security control measures
・Periodic training is conducted for employees regarding points to consider in relation to handling personal data.
(v) Physical security control measures
・Measures are taken to prevent the theft and loss of equipment, electronic media, and documents with personal data. Measures are also taken to ensure that personal data is not easily identified when such equipment, electronic media, and other are transported, including within the office.
(vi) Technological security control measures
・Access is controlled; the persons in charge and the range of the handled personal information database are limited.