The Asahi Kasei Group has established and is working to reinforce basic guidelines for risk management and emergency response in the Group's business operations in accordance with the Asahi Kasei Group Basic Regulation for Risk Management & Compliance.
Managers responsible for Risk Management & Compliance are designated in each SBU, core operating company, and subsidiary. They work to identify, assess, and analyze the risks of each business, and to plan measures to mitigate serious risks. Through the Risk Management & Compliance Committee, chaired by the president, we confirm and follow-up on the state of risk management across the entire Group.
Recognizing the importance of countermeasures to protect against information security risks, we established the Asahi Kasei Group Information Security Policy and aim to ensure and further improve information security.
Asahi Kasei Group Information Security Policy
As ensuring information security is an important management responsibility, the Asahi Kasei Group declares that it faithfully applies its established information security policy.
- 1.Legal Compliance
We comply with laws and internal regulations concerning information security.
- 2.System Establishment
We have an established system to safeguard information security throughout the organization.
- 3.Implementation of Countermeasures
We implement appropriate information security countermeasures corresponding to our information assets to prevent information security incidents. In the event that an incident occurs, we respond swiftly and appropriately, strive to minimize any damage, and endeavor to prevent any recurrence.
- 4.Education of Employees
We provide information security training to all employees to ensure full awareness of the importance of information security and the proper use of information assets.
- 5.Continuous Improvement
We continuously assess our efforts for information security, and apply improvements as necessary.
December 1, 2016
Asahi Kasei Corporation
Protection of personal information
The Asahi Kasei Group is committed to the proper handling and use of personal information, in accordance with the Asahi Kasei Group Regulation for Management of Personal Information. An information security handbook which describes our rules for handling information is distributed to all employees, and education is performed via e-learning. Furthermore, we made necessary changes to the Asahi Kasei Group Regulation for Management of Personal Information to comply with Japan's revised Personal Information Protection Act that took effect in May 2018.
Response to the EU GDPR
To comply with the General Data Protection Regulations (GDPR) that took effect in the EU in May 2017, we have newly formulated the Asahi Kasei Group Regulation for Management of Personal Information and established the necessary standards and systems.
Protection of intellectual property
The Asahi Kasei Group implements strict measures to prevent unauthorized or unintentional outflow of technological information and know-how in accordance with its basic policy and management standards for prevention of technology outflow. The Asahi Kasei Group also applies internal guidelines summarizing related precautions to take when entering business overseas as well as procedures to ensure the preservation of prior-use rights in China.
The company's internal magazine is used to raise further awareness among personnel, and workshops are held for training and education regarding protection of intellectual property.
For more information about our intellectual property, please refer to the Asahi Kasei Group Intellectual Property Report.
Crisis response system
Due to accidents, incidents, or problems, if Asahi Kasei Group operations are significantly damaged or would cause serious adverse effects on the general public, we have a system to establish a group emergency response headquarters which works with the relevant divisions and departments to ensure that the proper response is taken.
In fiscal 2017, we established the Asahi Kasei Group Emergency Response Regulation which stipulates basic policy when an emergency occurs, standards to institute an Emergency Response Headquarters, and the functions thereof.