(1) By preventing information security incidents, we aim to fulfill our corporate social responsibility and provide continuous customer service.

(2) In the event of an information security incident, we will minimize the damage, promptly recover, and prevent similar incidents from occurring.

We will establish an information security management system and environment, and continuously implement and improve ISMS.

We implement security measures based on risk assessments to prevent accidents and their recurrence.

We will provide education and training to executives and employees to raise their awareness of information protection and thoroughly familiarize them with regulations related to information management.

We will strictly implement relevant contracts, laws, and regulations with customers, and ensure the security of information assets in accordance with internal regulations.

We will periodically review and improve our information security management system in order to appropriately respond to social, technological, and legal changes related to information security.

We will comply with laws and regulations applicable to personal information, and will review and improve the above initiatives as necessary to further promote the thorough protection of personal information.