Basic Policy for Information Security

Basic Philosophy

E-Guardian Inc. and its subsidiaries (hereinafter referred to as "the Company") are built upon a relationship of trust with our clients. To maintain this trust and continue providing even better services, we must implement appropriate security measures for our information assets and protect them from loss, theft, and unauthorized use.

Therefore, we believe it is of the utmost importance not only to strengthen physical and technical security but also for our employees to have a high level of security awareness and to act in a manner that respects security.

The Company positions important information as "assets," establishes this "Basic Policy for Information Security," and disseminates it to all executives and employees. Concurrently, we will establish an Information Security Management System compliant with ISO/IEC 27001 to appropriately protect all information assets handled by the Company.

Through these efforts, this policy shall be one of our key management principles for business development, aiming to further enhance the sense of security for our clients and business partners and to maintain public trust by securely protecting information assets.

Basic Policy for Information Security

  1. Information security is a critical management and business issue for the Company, and we will address it as a company-wide effort.
  2. When collecting, using, and providing information assets in the course of our business development, we will do so appropriately in accordance with legal and regulatory requirements, contractual security obligations, and relevant internal regulations.
  3. We will take appropriate measures to prevent and rectify unauthorized access, theft, loss, leakage, alteration, and destruction of information assets.
  4. We will ensure that all of our executives, employees, and other personnel are aware of the importance of information security and are thoroughly informed on the proper use of information assets, and will provide information security education and training for this purpose.
  5. The Company will strive to prevent the occurrence of information security incidents. In the unlikely event that an incident occurs, we will promptly take appropriate measures, including steps to prevent recurrence.
  6. To implement information security measures, we will establish and operate an Information Security Management System (ISMS). Furthermore, we will conduct regular audits and reviews and strive for continuous improvement.
  7. We establish the following policies regarding the use of IT for control activities to ensure proper financial reporting.
    • To ensure efficient and accurate control, we will incorporate system-based business process controls into our main operations.
    • We will also effectively utilize IT-based information transmission methods such as email and the intranet.
    • As the corporate business environment changes, the systems in use will be reviewed as needed. For development and changes, we will ensure the effectiveness of IT business process controls by implementing IT general controls.

Date of Establishment: June 1, 2011
Date of Revision: October 1, 2012
English Version Refined : June 20, 2025
E-guardian, Inc
President Yasuhisa Takatani

Contact for Information Security Incidents

E-Guardian Computer Security Incident Response Team (EGSIRT)
csirt[at]e-guardian.co.jp