ISO27001 (Information Security Management System) certification

Cacco, Inc. has acquired both ISO/IEC 27001:2013 certification, the international standard for ISMS (Information Security Management System), and JIS Q 27001:2014 certification, the domestic standard.

Certification Standard: ISO/ IEC 27001:2013 JIS Q 27001:2014
Registration number: IA120255
Initial certification date: August 7, 2012
Certification approval date: July 30, 2021
Audit organization: EQA International Certification Center

---

Information Security Policy

Cacco, Inc. recognizes that the appropriate protection of all information assets handled in the planning, development, operation, maintenance, and sales of IT systems is one of the most important management issues to build a lasting relationship of trust with our customers. We will act in consideration of information security based on the following information security policy.

Protection of Information Assets

We appropriately classify the information assets according to their content, and take optimal security measures according to their importance.

Compliance with Laws, Regulations and Contracts

We comply with legal and regulatory requirements and contractual security obligations related to information security.

System

In order to promote information security activities, we shall establish an information security management system and strive to properly manage information assets.

Goals

We set our goals on improving the effectiveness of management measures related to information security to achieve effective information security activities.

Education

We will conduct information security training on a regular basis to raise awareness of information security and to ensure that security measures are thoroughly implemented.

We strive to continuously improve our information security management system through performance assessments, internal audits, and management reviews.

Enactment date: March 1, 2012
Revised: April 1, 2014
Hiroyuki Iwai, Representative Director Cacco Inc.