FRONTEO Inc. has acquired ISO27001 certification. ISO27001 is an international standard for information security management systems (ISMS).
|Organization name||FRONTEO Inc.|
|Registered organization||FRONTEO Co., Ltd. / PCF FRONTEO Co., Ltd.
FRONTEO Korea / FRONTEO Taiwan
|First registration date||Nov. 2009, 3|
|Applicable standards||JIS Q 27001: 2014 (ISO / IEC 27001: 2013)|
|Registration range||Next business in the legal tech AI business
・ Support for eDiscovery / Compliance
・ Sales and operation support of business data analysis system
|Certification Agency||Better Living System Examination Registration Center|
We have established the information security policy as follows, operate and maintain the information security management system based on ISO27001, and safely and securely keep the valuable information assets of our customers, and work to strengthen and maintain the security. I will come.
Information Security Policy
FRONTEO Inc. handles data that requires high confidentiality from customers and provides services that require high integrity and availability.
We recognize that protecting all information assets, including confidential information entrusted to us by our customers, is an important management issue for maintaining and expanding our business activities.
Based on this idea, we have established an "Information Security Policy" and declared that we will implement and promote it in order to actively work on the establishment, introduction, operation, monitoring, review, maintenance and improvement of information security management systems. To do.
- We will educate all employees and recognize that it is an important social responsibility to handle information assets appropriately and act accordingly.
- We will comply with information security laws and regulations such as information security rules, contractual security obligations, and personal information protection laws.
- By continuously analyzing and evaluating risks regarding threats and vulnerabilities to information assets, we will realize an appropriate management system according to the purpose and importance of information assets.
- In order to protect the information system, we will implement appropriate security measures based on risk analysis and evaluation.
- We will endeavor to maintain the availability of information systems in order to prevent outages of the services we provide.
- In the unlikely event that an information security accident occurs, we will promptly handle it to prevent the damage from spreading and strive to prevent recurrence.
- We will ensure business continuity by minimizing business interruptions due to serious information system failures and disasters.
- We will take strict measures in accordance with our internal rules for our employees who have violated our information security policy and related rules.