Sompo Holdings, Inc. (hereinafter referred to as “Sompo Holdings”) set this basic policy on Cyber Security based on the Basic Policy on Internal Controls for the purpose of establishing and maintaining effective cyber security management system for active use of information technology.
- Operation Policy
Sompo Group considers cyber security risk as an important management issue, and builds our cyber security management system based on the following policies.
- Sompo Group shall recognize cyber security as a key success factor of digital transformation which is evolving with leading-edge technologies, and implements cyber security measures with appropriate investment to achieve Sompo Group’s business objective.
- Sompo Group shall recognize efforts for cyber security as social responsibility in the ‘Connected Society’ where every entity is connected by information technology.
- Sompo Group shall keep enhancing our cyber security capability by incorporating cyber security into our corporate culture as an important element.
- Sompo Holdings shall clarify the roles and responsibilities in cyber security management, and each group company of the Sompo Group shall work on cyber security measures under its own roles and responsibilities. We shall also call on our business partners to take appropriate cybersecurity measures.
- Each company of Sompo Group shall comply with local laws and regulations in countries and districts where the company operates businesses.
