Status of Risk Management System

We have established “Risk Management Regulations” and are working to strengthen our system for promoting risk management of the company and sharing necessary information.
We have established a Risk Management Committee, which is made up of members centered around directors, and hold a meeting at least once every six months to discuss a wide range of risk management issues, including risk assessment and countermeasures, and to consider specific responses.
Furthermore, we are prepared for unforeseen circumstances. In the event of an emergency such as an earthquake or fire, we have a system in place that makes the representative director the overall risk management supervisor.
In order to prevent and detect risks at an early stage, we also have a system in place that allows us to get advice from external specialists such as lawyers, certified public accountants, tax accountants, and labor and social security attorneys as necessary.

Regulations and Other Systems for Managing the Risk of Losses for the Group

(1) In order to manage risks for the Group, we will hold a Risk Management Committee on a regular basis or as needed based on the “Risk Management Regulations” to identify risks, discuss management methods, and minimize risks.

(2) Important matters discussed at the Risk Management Committee will be reported to the Board of Directors' meeting as necessary.

(3) The possibility of new risks will be identified through reports on the status of business execution at the Management Meetings, and if necessary, the representative director will notify each relevant department, and a system will be established that enables the implementation of swift crisis management measures.

Status of Information Security and Personal Information Protection Systems

In order to protect the information of clients handled in our business and our own corporate information from various risks of leakage, we have established “Information System Management and Operation Regulations”. Access rights are managed in accordance with the regulations on job authority.
In addition, in order to comply with the Personal Information Protection Law, we are ensuring the proper handling and strict management of personal information. We are doing our utmost to protect our information assets, while ensuring the effectiveness, efficiency and confidentiality of the information systems.

Basic Policy and Status of Implementation for the Elimination of Antisocial Forces

(1) We have established a “Manual for Dealing with and Investigating Antisocial Forces”. We will not have any relationship with antisocial forces or groups that threaten the order and safety of civil society. We will firmly reject any demands from antisocial forces or groups, and will not conduct any transactions with companies, groups or individuals that have any relationship with these forces or groups.

(2) In dealing with antisocial forces, we will work to create an environment that allows us to respond quickly in close cooperation with our legal counsel and relevant police station, while striving to monitor trends related to antisocial forces.

(3) We will continuously work to eliminate antisocial forces, including incorporating antisocial force exclusion clauses into our standard contract forms and conducting internal training on preventing unreasonable demands from antisocial forces.