The Kowa Group recognizes that the appropriate management of information is an important issue for its management and has established this Information Security Policy to ensure information security.

１．Compliance with Laws and Regulations

We will comply with all laws, regulations, and social norms related to information security.

２．Information Security Management System

We will assign a Chief Information Security Officer (CISO) and a Computer Security Incident Response Team (CSIRT) to make clear our responsibility for information security. Furthermore, the Kowa Group as a whole will maintain a system for monitoring the status of information security management and implementing prompt security measures.

３．Information Asset Protection

We will appropriately manage all information assets held by the Kowa Group, and strive to protect information assets such as by preventing their leakage, loss, damage, or misuse.

４．Response to Information Security Incidents and Accidents

We are committed to preventing incidents and accidents related to information security, and if they should occur, we will respond promptly to minimize damage and take measures to prevent recurrence.

５．Information Security Education

We will educate and raise awareness among all relevant personnel regarding the importance of information security and its compliance requirements, and provide education and training for the appropriate management of information assets.

６．Strengthening Information Security in the Supply Chain

We are committed to maintaining and improving the level of information security together with our partners who handle information assets, and to protecting information assets throughout the entire supply chain.

Established on July 1, 2024