日本語 English

Information Management

Management System

Policy and Basic Approach

In its business activities, the Mitsui Chemicals Group complies with laws and regulations, including company information management rules on company and customer information. Furthermore, it emphasizes to its employees the importance of and responsibilities involved with information management so that information-related operations are carried out properly. In particular, organizational reinforcement of information security is recognized as an important issue in protecting the information assets of the Group against all threats, in order to avoid any loss of trust or disruption to our business operations that would result from information leaks or data falsification.

In addition, we have established a Global Policy on corporate information management (information security), information system security, and personal information protection, and have extended this policy to our subsidiaries and affiliates. The Mitsui Chemicals Head Office and all subsidiaries and affiliates are obligated to ensure information system security and information security and to protect personal information through establishing company rules, etc., and are making efforts to strengthen the Group's global information management system.

In particular, with respect to protecting personal information, we respect the privacy of individuals and recognize that it is an important social responsibility to handle and protect personal information appropriately. Accordingly, we have established the "Declaration on Personal Information and a Specific Personal Information Protection Policy (Privacy Policy)" and the "Personal Information Protection Management Rules" to protect personal information and specific personal information.

Global Policy	Main items
Global Policy on Information Security	Procedures for creating, obtaining, using, disclosing, sending, storing, and discarding information assets Strict handling of confidential information Confidentiality after resignation Provision of education on information security Disciplinary actions based on the work regulations at the time of the violation of the aforementioned procedures/rules
Global Policy on Information System Security	Strict management of information system usage authorities Prohibition of access to systems and company information that is unnecessary for business operations Acquiring and storing access log of company information and personal information Obligation to report security incidents when they occur Provision of education on personal information protection Disciplinary actions based on the work regulations at the time of the violation of the aforementioned procedures/rules
Global Policy Protection of Personal Information Protection	Compliance with personal information regulations Acquisition and procession of personal information within the scope necessary to carry out operations Restrictions on provision of personal information to third parties Implementation of security control measures for personal information Retention of records regarding the processing of personal information Response to infringement of personal information Provision of education on personal information protection Disciplinary actions based on the work regulations at the time of the violation of the aforementioned procedures/rules

System and Responsible Officers

With regard to information management, we are comprehensively managing risks under our risk management system. For information security on the system, the Information System Division is responsible for information security, under the oversight of the Sector President, Digital Transformation Sector, who is also the officer in charge of the Information System Division. The Corporate Administration & Legal Division is responsible for compliance with information management laws, covering the protection of personal information and information leaks, under the oversight of the officer in charge of the division. The two divisions coordinate their actions and combine their expertise to ensure comprehensive control.