ES-CON JAPAN recognizes that protecting personal information and other information assets held by it from threats such as leakage, loss, falsification and disappearance is an important management issue, and in order to address this issue in a unified manner across the company, we have established ES-CON JAPAN Ltd. basic policy regarding information security.

1. 1. Establishment of an information security management system

   All officers and employees (including temporary employees) who use all information assets held by ES-CON JAPAN will understand this information security policy, comply with laws and regulations related to information security, and strive to properly protect information assets, thereby building a safe information security management system.

2. 2. Appointment of a person responsible for information security

   ES-CON JAPAN will appoint an information security manager to accurately grasp the status of information security management and ensure that it functions continuously and effectively.

3. 3. Establishment of internal regulations regarding basic information security policies

   Based on this basic information security policy, we will establish internal regulations regarding the handling of information assets in general and thoroughly disseminate clear policies to all officers and employees.

4. 4. Compliance with Laws and Regulations

   ES-CON JAPAN comply with real estate-related laws and regulations, the Personal Information Protection Act, laws and regulations related to information security, and other norms, guidelines, and internal regulations.

5. 5. Information Security Risk Assessment

   We will establish a system for understanding, identifying, and evaluating risks to information assets, and implement an appropriate management system according to the purpose of use and importance of information assets.

6. 6. Implementation of information security measures

   ES-CON JAPAN will implement reasonable information security measures against identified threats, work to safely manage information assets, and ensure the confidentiality, integrity, and availability of information assets.

7. 7. Education to improve information security

   ES-CON JAPAN will provide security education to all officers and employees in order to thoroughly inform them of their obligations regarding the protection of information assets and to maintain and improve the level of security required to protect information assets.

8. 8. Information Security Incident Response

   In the unlikely event that an information security incident occurs, ES-CON JAPAN will deal with it promptly, prevent the damage from spreading, and strive to prevent recurrence.

9. 9. Measures for violation of the Basic Policy on Information Security

   ES-CON JAPAN will thoroughly inform both inside and outside the company that we will take a strict stance in the event of any violation of our information security policy.

10. 10. Preparation and implementation of self-inspection and monitoring

    ES-CON JAPAN will establish a system for regular self-inspection of the management and operation status of information security and conduct daily monitoring to improve the effectiveness and reliability of information security.