TV Bank Corporation (hereafter referred to as “TV Bank”) would like to further enhance its reputation as a socially responsible corporation by taking thorough and sophisticated measures to reduce the risk of information leakage. Therefore, TV Bank has articulated such a philosophy in this “Information Security Policy” to make information security an essential and absolute part of its corporate culture.
TV Bank maintains an advanced information security management system by complying with the “Information Security Policy” and “Action Guidelines for Protection of Personal Information (Privacy Policy)”.
1. Establishment of Information Security Management System
To retain the confidence of society, TV Bank has established a highly secure information security management system, based on which TV Bank will protects all information assets it holds and comply with laws, regulations and rules concerning information security.
2. Appointment of “Chief Information Security Officer”
TV Bank has appointed a “Chief Information Security Officer (CISO)” and organized an Information Security Committee under the CISO. With this organization, TV Bank can be active in accurately assessing how information security is maintained across the company and in taking necessary and timely measures.
TV Bank maintains an advanced information security management system by complying with the “Information Security Policy” and “Action Guidelines for Protection of Personal Information (Privacy Policy)”.
1. Establishment of Information Security Management System
To retain the confidence of society, TV Bank has established a highly secure information security management system, based on which TV Bank will protects all information assets it holds and comply with laws, regulations and rules concerning information security.
2. Appointment of “Chief Information Security Officer”
TV Bank has appointed a “Chief Information Security Officer (CISO)” and organized an Information Security Committee under the CISO. With this organization, TV Bank can be active in accurately assessing how information security is maintained across the company and in taking necessary and timely measures.
3. Establishment of Internal Regulations for Information Security
TV Bank has established internal regulations based on this Information Security Policy and set out clear policies for the treatment of all information assets, not only personal information, and makes it clearly known inside and outside TV Bank that leakage of information and the like will be severely punished.
4. Establishment and Enhancement of Auditing System
TV Bank has established a system in which internal audits shall be conducted to investigate whether the Information Security Policy and other regulations and rules are complied with. TV Bank conducts external audits as well to obtain more objective evaluation. By conducting these two types of audits in a planned manner, TV Bank proves that all its employees comply with the Information Security Policy.
5. Establishment of Information Security System with Sophisticated Measures
TV Bank has established a system based on sophisticated information security measures to prevent unauthorized access to, leakage, alteration, loss or destruction of, or obstruction of use of, information assets. In particular, TV Bank strictly controls access to all kinds of data by restricting work in high-security areas, the right to access databases, and the like.
6. Improvement of Information Security Literacy
TV Bank provides all of its regular and temporary employees with education and training on information security so that all personnel concerned with information assets can perform their business activities with sufficient information security literacy. TV Bank continues to educate and train all its regular and temporary employees so that they can respond to changing conditions.
7. Strengthening Control over Contractors
Before concluding an outsourcing agreement with a contractor, TV Bank fully examines its eligibility and urges it to maintain a security level that corresponds to or is stricter than that of TV Bank. TV Bank reviews its contractors on a continuing basis, and tries to add stricter conditions in renewing agreements to ensure that security level is properly maintained.
Scope of the “Information Security Policy”
In this Policy, “information assets” are defined as all the information that TV Bank acquires or finds in its operations and all the information it holds for its operations. Those “corporate directors/officers and regular/temporary employees” of TV Bank who handle or manage any of the information assets, and those “contractors and their employees” who handle any of the information assets of TV Bank, must comply with this Policy.
TV Bank has established internal regulations based on this Information Security Policy and set out clear policies for the treatment of all information assets, not only personal information, and makes it clearly known inside and outside TV Bank that leakage of information and the like will be severely punished.
4. Establishment and Enhancement of Auditing System
TV Bank has established a system in which internal audits shall be conducted to investigate whether the Information Security Policy and other regulations and rules are complied with. TV Bank conducts external audits as well to obtain more objective evaluation. By conducting these two types of audits in a planned manner, TV Bank proves that all its employees comply with the Information Security Policy.
5. Establishment of Information Security System with Sophisticated Measures
TV Bank has established a system based on sophisticated information security measures to prevent unauthorized access to, leakage, alteration, loss or destruction of, or obstruction of use of, information assets. In particular, TV Bank strictly controls access to all kinds of data by restricting work in high-security areas, the right to access databases, and the like.
6. Improvement of Information Security Literacy
TV Bank provides all of its regular and temporary employees with education and training on information security so that all personnel concerned with information assets can perform their business activities with sufficient information security literacy. TV Bank continues to educate and train all its regular and temporary employees so that they can respond to changing conditions.
7. Strengthening Control over Contractors
Before concluding an outsourcing agreement with a contractor, TV Bank fully examines its eligibility and urges it to maintain a security level that corresponds to or is stricter than that of TV Bank. TV Bank reviews its contractors on a continuing basis, and tries to add stricter conditions in renewing agreements to ensure that security level is properly maintained.
Scope of the “Information Security Policy”
In this Policy, “information assets” are defined as all the information that TV Bank acquires or finds in its operations and all the information it holds for its operations. Those “corporate directors/officers and regular/temporary employees” of TV Bank who handle or manage any of the information assets, and those “contractors and their employees” who handle any of the information assets of TV Bank, must comply with this Policy.
