Policy and Basic Approach
In its business activities, the Mitsui Chemicals Group complies with laws and regulations on company and customer information and shares with its employees the importance of and responsibilities involved in information management so that information related operations are carried out properly. In particular, organizational reinforcement of information systems security is recognized as an important issue in protecting the information assets of the Group against all threats, to avoid any loss of trust or disruption to our business operations that would result from information leaks or data falsification.
System and Responsible Officers
We are comprehensively controlling information risks through our risk and compliance management system. The Information System Division is responsible for information system security with the responsible officer for information systems as the responsible party, while the Corporate Administration & Legal Division is responsible for compliance with information management laws, including unauthorized information leaks and protection of personal information, with the responsible officer in charge of the division as the responsible party. The two divisions coordinate their actions and combine their expertise to ensure comprehensive control.
In 2020, we established a global policy on information system security. By requiring Mitsui Chemicals Head Office and all its subsidiaries to ensure information security through (1) strict management of information system usage authority, (2) prohibition of access to systems that are unnecessary for business or to company information, (3) acquisition and storage of the access log to company information and personal information, (4) establishment of company rules that prescribe reporting obligation in the event of a security incident, etc., we have been working to strengthen our group-wide information management framework globally.
Personal Information Protection