Information Security Policy
Cyberneura K.K. (hereinafter referred to as “the Company”) considers it our mission to meet the expectations of all stakeholders—including clients, partner companies, and employees—and to contribute to society through the provision of software development, website creation, and IT consulting services.
In our business activities, we utilize numerous information assets, including personal information entrusted to us by our clients. We recognize that the appropriate protection of these information assets is a critical management priority in order to meet the expectations of all stakeholders.
Therefore, the Company hereby declares that we have established an information security management framework, formulated the following Information Security Policy, and are committed to continuous improvement across the entire organization in response to changes in our business environment.
1. Definition of Information Security
Information security refers to ensuring and maintaining the confidentiality, integrity, and availability of information.
2. Scope
This policy applies to all information assets handled in the Company’s business activities, and to all officers and employees of the Company (including contract employees, part-time workers, and temporary staff).
3. Security Objectives
The Company has established the following security objectives and will reliably implement measures to achieve them.
a) Respect and comply with contractual obligations with clients and legal or regulatory requirements.
b) Prevent information security incidents before they occur.
c) Conduct periodic evaluations of this policy, related regulations, and management systems, and carry out reviews and improvements of information security.
4. Information Security Measures
The Company implements the following measures to protect information assets from threats.
a. Access Management
Access to information assets is limited to the scope necessary for business operations, with appropriate access permissions configured and managed.
b. Technical Measures
Technical measures are implemented to protect information systems from unauthorized access, malicious software, and other threats.
c. Physical Measures
Physical measures are implemented to protect facilities and equipment that store information assets from unauthorized entry, damage, and interference.
d. Personnel Measures
The Company operates its business with personnel who possess sufficient knowledge and experience in information security. When hiring employees, competency evaluations and non-disclosure agreements will be conducted.
e. Outsourcing Management
When outsourcing operations to external service providers, the Company evaluates the status of information security measures at the outsourcing partner and conducts appropriate oversight.
5. Legal Compliance
The Company complies with laws, government-issued guidelines, and other standards related to information security.
6. Incident Response
In the event of an information security incident, the Company will respond promptly to prevent the spread of damage, investigate the cause, and implement measures to prevent recurrence.
7. Continuous Improvement
The Company conducts periodic reviews of its information security management framework and measures, and promotes continuous improvement.
For details on our security management measures, please refer to Security Management Measures.
Established: 2026-04-06