Information Security Policy
Established: January 5, 2025
VanNess Inc. (hereinafter "the Company") recognizes all information assets acquired through its business activities as critical management resources. We are committed to ensuring information security based on the following policy, regarding the protection and proper management of these assets as a core management responsibility.
Definition of Information Security
"Information security" at our company is defined as maintaining the confidentiality, integrity, and availability of information.
Basic Objectives
- Protection of information assets entrusted to us by clients and business partners
- Prevention of information security incidents and minimization of potential damage
- Provision of a safe and secure environment for service users
Basic Policy
We comply with all laws, regulations, and contractual obligations related to information security.
We establish clear accountability for information security management and maintain appropriate organizational governance.
We conduct ongoing education and awareness programs on the importance of information security for all employees.
We restrict access to information assets to the minimum necessary level and implement appropriate authentication management.
We implement technical measures including encryption, log management, and vulnerability management, as well as physical protection measures.
We exercise appropriate oversight over external service providers, including cloud service vendors.
We maintain response procedures for information security incidents, working to minimize damage and achieve swift recovery.
We regularly review our information security practices and adapt to emerging threats and changes in the business environment.
Established: January 5, 2025
VanNess Inc.
CEO Kazuki Miyazaki