Basic ISMS Policy

Ⅰ. Overview of basic ISMS policy Kawamura International entrusted with a range of information by its customers concerning translation and document creation.
As such, we are aware that information security is one of the most important issues we face, and we do our utmost to protect customers from all security threats and maintain a system of management that delivers peace of mind and trust to our customers.This is why we have established a basic ISMS policy, and we vow to fulfill its information security requirements.

II.Policy Based on the above basic policy, Kawamura International has defined a basic ISMS policy to ensure the integrity, availability, and the confidentiality of information assets.
In specific terms we ensure reliable implementation of the following, and we always strive to make improvements.

  1. We establish risk evaluation standards and a risk assessment mechanism, and define a systematic approach to risk assessment based on these.We place great importance on confidentiality when it comes to information our customers have entrusted us with, so we implement a risk assessment to identify threats and vulnerabilities and clearly set out the security requirements.
  2. We always ensure we works with customers' documentation in secured areas, and we take thorough precautions to secure our equipment and facilities.
  3. We meet our customers needs by constructing an ISMS and keeping evidence (documentation and records).
  4. We comply with the Personal Information Protection Act, Copyright Act, Unauthorized Access Prohibition Act, business contracts, and rules and standards relating to ISMS.
  5. We implement periodic information security education and training for all employees, and make efforts to raise awareness concerning security.
  6. We clarify where risks lie and take measures against them, and as such increase customer satisfaction and ensure business stability.

III.Scope of application This policy is applied to information assets used in Kawamura International's work.
Here, an information asset is defined as information entrusted to us by a customer, information used as a management resource such as technology and knowhow (documents, data, etc.), information systems, services, and the facilities and equipment required to protect these things.

IV.Organization and responsibility We have established an Information Security Committee which, on the basis of the basic ISMS policy, examines security standards and requirements, and decides upon and evaluates security measures.
We have also created the role of Information Security Manager to ensure that ISMS activities proceed smoothly.Based on the directions of the Information Security Committee, each and every member of KI's staff ensures our security measures are implemented and strives to continuously improve our ISMS.

V.Audit An internal auditor performs an annual audit of our basic ISMS policy, review status of our ISMS manual/procedures and other such documents, whether or not the relevant standards have been met, the status of risk response plans and all other measures.

VI.Employee duties Any employee who violates the basic ISMS policy, ISMS manual and procedures, or any related standards or regulations shall be punished in accordance with our internal rules.

Created: June 1, 2012 Revised: November 18, 2015 Kawamura International Co., Ltd. President: Midori Kawamura

It IS 632884 / ISO 27001