Policy on Information Security

Information Security Declaration

Solasto Corporation (hereafter, “we,” “our” or “us”) has established its Philosophy: People. Technology. Supporting comfortable living and energetic communities.

We understand that earning the trust of our stakeholders, including the customers who use our services, and ensuring the security of the information we possess, including protecting and managing our information assets and ensuring privacy, are most important for the achievement of the above Corporate Philosophy.

We declare that we have built and will maintain information security system to ensure the confidentiality, integrity and availability of information assets, strive to increase information security awareness among our executives and people in equivalent positions, employees, contract employees, part-time workers, and temporary staff (hereafter “executives and employees, etc.”), comply with legal requirements and regulations related to information security, and improve the process of managing information security on an ongoing basis.

April 1, 2024
Solasto Corporation
President and Representative Director, CEO
Toru Noda

  
 

Basic policy on Information Security

  • Objectives and scope of information security
    Solasto believes that information security is the foundation for earning the trust of its stakeholders and takes the necessary and appropriate measures from the perspectives of organization, human resources, physical security, and technology in order to protect information assets and manage risks.
  • Responsibilities and roles concerning information security
    All executives and employees of Solasto shall be aware of their responsibilities and roles concerning information security and comply with all of the requirements of the related laws, regulations, contracts, as well as internal regulations that ensures the fulfillment of such requirements. Solasto shall designate a person and a team responsible for information security and establish a system for promptly implementing information security activities within the organization.
  • Managing information security risks
    Solasto shall assess risks to identify and prioritize risks associated with the confidentiality, integrity and availability of information security measures. Solasto shall then formulate and implement appropriate plans for responding to the risks.
  • Information security education
    Solasto shall provide information security education to all of its officers and employees and will provide education on an ongoing basis to raise awareness of information security and encourage responsible behavior.
  • Response to information security incidents
    All of the executives and employees shall recognize Solasto’s vulnerabilities and the threat of the loss of confidentiality, integrity or the availability of information security systems due to an incident, accident, disaster or other cause and strive to prevent incidents from occurring. In the event of an incident, Solasto will respond promptly in accordance with its response plans, such as containment and elimination of the incident and recovery from the incident.
  • Continuous improvement of information security
    Solasto strives to continuously improve information security by regularly evaluating the effectiveness of information security rules and measures and implementing appropriate improvement measures.