Information Security Management System (ISMS)

We, Mitsui-Soko Express Co., Ltd. (hereafter “this company”) will strive to improve customer satisfaction and contribute to society by continuously managing and improving our information security management system.

Basic ISMS Policy

In this unprecedented information age, the effective use of information is vital for future corporate development. As a member of Mitsui-Soko Group, we have made it our corporate philosophy to use our highly specialized international logistics know-how to increase customer satisfaction and contribute to society. In order to continue growing in society, we must make our business activities more transparent to avoid misunderstandings and win society’s understanding and trust in our company. It is not hard to imagine that a security incident in the course of our relationship with our customers would mean a tremendous loss of business opportunities. In order to avoid such problems as well as to leverage information to make advancements in strategic management, all our employees must recognize the importance of our information resources, which are the value of the company itself, and use them effectively. For this purpose, we must strive to maintain not only the confidentiality, but also the integrity and availability of the information resources we possess. This company’s management therefore declares the following policy.

　　　

1. Information Security Goal
   This company’s information security goal is to maintain the confidentiality, integrity, and availability of the information resources we possess, and to protect those resources from various security threats.
2. Information Security Initiative
   We use JIS Q 27001:2013 (ISO/IEC 27001:2014)/ISMS (Information Security Management System) authentication standards for information security, which all departments throughout our company implement under the direction of the information security manager.
3. Legal Compliance
   In order to protect our information resources, we will operate in accordance with the information security policy we have established, and also adhere to information security related laws, regulations, other standards, and customer contracts.
4. Education
   We will regularly implement education and training to ensure all employees recognize the importance of information security and handle information resources appropriately.
5. Risk Assessment
   In order to appropriately protect and manage information resources, we will establish a risk assessment system and assess risks on a regular basis.
6. Continuous Improvement
   This company will establish, implement, maintain, and continuously improve our Information Security Management System according to ISMS requirements.