information

SECURITY

Information Security Policy

1. Purpose
As the scale of the company grows, it is expected that its social responsibilities and roles will also become heavier. As an information distribution company trusted by customers and society, our goal is to ensure customer trust and minimize business losses by preventing security incidents related to customer information.

2. Definition of Information Security
Information security means ensuring and maintaining confidentiality, integrity and availability.
(1) Confidentiality: The property of making information unavailable or private to unauthorized individuals, entities (groups, etc.) or processes. (Protecting information from disclosure or unauthorized access.)
(2) Integrity: The property of protecting the accuracy and completeness of assets (protecting information from falsification or errors).
(3) Availability: The characteristic of being able to access and use information when requested by an authorized entity (group, etc.) (protecting information from loss or damage, system downtime, etc.).

3. Scope of application
[Organization]: JOC Network Co., Ltd.
[Facility]: Kyoto Head Office
[Work]: Software development and software management
[Assets]: Documents, data, and customer support management system related to the above business and services
[Network]: Company-wide network

4. Implementation details
(1) We will establish, implement, operate, monitor, review, maintain, and improve an information security management system to protect all applicable information assets from threats (leakage, unauthorized access, tampering, loss, and damage).
(2) Information assets will be handled in compliance with applicable laws and regulations and contractual requirements.
(3) Prevention and recovery procedures shall be established and regularly reviewed to ensure that business activities are not interrupted in the event of a major failure or disaster.
(4) Education and training on information security shall be provided periodically to all applicable employees.

5. Responsibilities, Obligations and Penalties
(1) The CEO is responsible for information security. To that end, the CEO will provide the necessary resources for the applicable staff.
(2) Staff within the scope of this policy are obligated to protect customer information.
(3) Covered staff shall follow procedures established to maintain this policy.
(4) Staff within the scope of the scope shall be responsible for reporting information security incidents and weaknesses.
(5) If any staff member within the scope of this policy engages in any conduct that endangers the protection of information assets that they handle, including but not limited to customer information, they will be disciplined in accordance with the company's work regulations.

Date: July 2, 2018
Position: President and CEO
Signature: Junzo Oishi

品質マネジメントシステム基本方針

当社は、ソフトウェア開発を通じて顧客の期待と信頼に応え、社会に貢献することを使命としています。 品質は、当社の持続的成長と顧客満足の実現に不可欠な要素であり、全社を挙げて品質マネジメントに取り組みます。
当社は、以下の基本方針に基づき、ISO 9001品質マネジメントシステムの要求事項に適合し、継続的改善を推進します。

1．顧客満足の向上
– 顧客要求事項および適用される法令・規制要求事項を正確に把握し、これを確実に満たします。
– 顧客の声を重視し、品質とサービスの向上に反映させます。

2．品質マネジメントシステムの有効性の継続的改善
– 当社独自のグループウェアWORKSを活用して業務プロセスを可視化・標準化し、品質マネジメントシステム（QMS）のパフォーマンスを定期的に評価・見直します。
– 不適合・リスクを的確に管理し、再発防止と未然防止に努めます。

3．人材の成長と組織力の強化
– スタッフ全員が品質目標を理解し、自らの役割と責任を果たすよう教育・啓発を行います。
– 品質に対する意識とスキルの向上を図り、専門性の高い技術者集団を形成します。

4．品質目標の設定とレビュー
– 本方針に整合した具体的な品質目標を年度ごとに設定し、定期的にレビューします。
– 目標の達成度を継続的にモニタリングし、経営層によるマネジメントレビューにて評価・改善を図ります。

本品質方針は、全社員に周知徹底し、関係者との共有を図るとともに、社内外からの要求に応じて適宜見直します。

制定日：2025年4月1日
株式会社ジェイオーシーネットワーク
Representative Director: Junzo Oishi