Information Security Policy

Construction of an Information Security Management Framework
The Company strives to protect all information assets that it possesses and works to maintain and improve information security.
 

Appropriate Management of Information Assets
Information assets to be held are categorized and evaluated from the perspectives of confidentiality, completeness and availability, and are appropriately managed according to their risks.
 

Compliance with the Law
CyberAgent complies with laws regarding information security and other guidelines.
 

Improvement of Constant Information Security Management
In order to prevent information security incidents, CyberAgent implements the following measures.
・External system audit at least annually for all systems that are critical, externally accessible, and have
personal information storage and billing functions.
・System audit when new services are released or upgraded.
・Survey on the efforts made by suppliers to ensure information security.

Security Training for Employees
The Company provides security training to employees.

CyberAgent has built a special site to transmit security information throughout the company’s intranet. It is working to raise all employees’ awareness by sending information and educating them regarding security, and releasing comics that explain the importance of security from different points in a simple manner.