About information security and protection of personal information
Information Security Policy
Evang Sol Co., Ltd.
Representative Director Toshiyuki Koyama
Last revision date 2021/2/18
Our company operates a business that provides planning, design, development, maintenance and operation services related to information systems, as well as cloud services (SaaS for companies, etc.). Responsibility to stakeholders is especially essential.
general direction
The Company takes appropriate measures to protect information assets it possesses from the perspectives of confidentiality, integrity, and availability. We will work systematically with the highest priority on In addition, since our business is a field where technological innovation is rapid, we will take protective measures in line with the latest trends.
Compliance with laws and regulations
We manage the assets entrusted to us by our customers at our data centers in a safe physical and network manner, and at the same time, we are legally and contractually obligated to ensure information security regarding the services we provide.
Organizational Structure
The Company establishes an information security management system, implements it, implements it, audits it, reviews it, maintains it, and maintains it. We will work systematically to limit
Risk management
We have a systematic approach to assessing and managing risks. In addition, we will take systematic and human preventive measures to reduce the risks that may occur, and create a system to minimize the impact in the event of an accident.
ISMS certification
In order for our customers to use our services with peace of mind, we have introduced an information security management system (ISMS) and are actively working to improve the confidentiality, integrity, and availability of the information assets that we must protect in a well-balanced manner. I'm going to As proof that the ISMS is being properly operated, we have received an ISMS conformity certification after being audited by a third-party organization.
Authentication overview
Certification standard: JIS Q 27001:2014 (ISO/IEC 27001:2013)
Certification number: MSA-IS-455
Registered organization name: EvangTech Co., Ltd.
Location: 4-15-11 Nihonbashi Honcho, Chuo-ku, Tokyo
Scope of certification: Planning, design, development, maintenance and operation related to information systems, and provision of cloud services (SaaS for companies, etc.)
Certification date: March 29, 2021
Expiration date: March 28, 2024
About personal information protection
We believe that protecting and properly handling personal information and specific personal information (hereinafter referred to as “personal information”) is the basis of our business activities and a social responsibility, and we will implement the following policy without fail.
<Personal Information Protection Policy>
-
When acquiring personal information, we will clarify the purpose of acquisition to the customer and take measures to prevent the use and provision of personal information for purposes other than those intended.
-
We will take measures to prevent the leakage, loss or damage of personal information, and in the unlikely event that it occurs, we will promptly implement corrective measures.
-
We will comply with laws and regulations regarding the handling of personal information, national guidelines and other norms.
-
We will sincerely and promptly respond to complaints and consultations regarding personal information from customers.
-
We will continuously improve the system for managing personal information.