TechnoPro Group is firmly committed to information security and privacy and conducts comprehensive training to ensure that all employees possess a high level of understanding of information security and recognize its importance. Where employees are contracted to work onsite at a client’s place of business, they receive additional education and training to ensure that they comply with the client’s in-house information security rules. In addition, TechnoPro Group has strict operational regulations in place at each group company to ensure that the personal and confidential information of our clients is protected and information leaks are prevented.
The TechnoPro Group recognizes the proper management of information assets as an important management matter. The group has established this Information Security Policy for the purpose of ensuring improved information security standards for the group on an organized and ongoing basis.
2. Information Security Structure
The TechnoPro Group holds regular CSR Committee meetings which include discussions of the status of information security management within the TechnoPro Group. The CSR Committee implements information security policies, engaging in the appropriate and practicable management of information assets. In so doing, the group ensures the objective, systematic understanding of information security risks, establishing a structural system for informational security.
3. Compliance with Legal Statutes
All TechnoPro Group officers, employees (including part-time employees and temporary employees), and employees of affiliated companies obey the law related to information security, other standards, this Information Security Policy, and other internal rules related to information security.
4. Training and Education
All TechnoPro Group officers, employees (including part-time employees and temporary employees), and employees of affiliated companies receive regular and as-needed training and education on an ongoing basis to ensure the performance of duties reflecting literacy in information security.
5. Implementation and Ongoing Improvement
The TechnoPro Group engages in regular and as-needed audits (when required by major change) to ensure compliance with this policy in the performance of the group’s duties and to ensure this policy is functioning effectively. The group conducts regular reviews of this policy and other internal rules, endeavoring for ongoing improvement in information security.
Published: July 1, 2014
Revised: May 1, 2015
We implement various information security measures such as periodic internal audits and corrections on areas that include management of access rights to file servers, installation of FW and DMZ, entrance management at each site with IC cards etc., redundancy of servers including remote locations, encryption and remote management of mobile PCs, and penetration testing.
The Group’s IT department is at the centre of TechnoPro-CSIRT, which is working to prevent damage from information security incidents and strengthen the emergency response system for the entire group.
Education regarding Security of Information
For the TechnoPro Group which provides worker dispatch and on-site contract services, with many employees working at the customer’s premises, we believe that the most important information security measure is through education and training.
In addition to training at the time of joining the company, we provide education regarding security of information by compulsory annual e-learning. We provide education on compliance with customer instructions and rules, prohibition on the use of personal information devices during customer operations, and guidance on behavior outside of work and on private SNS.