COMPANY
Information Security Initiatives
Information Security Policy
Primagest,Inc. recognizes the importance of protecting the information assets we handle, including the information assets of our customers. As such, we have established an information security policy as the basis of an information security management system to achieve this objective.
All of the staff members involved in business operations shall comply with the rules of this information security management system, implement and maintain it, and audit its operation to continuously improve the system.
Updated January 30, 2015
-
① Approach to Information Security
We shall make a conscious choice to act ethically and strive to be a trustworthy and reliable corporate citizen. We shall comply with all laws, international rules, and internal regulations necessary for corporate activities while respecting social order and ethics as we strive to be a company that is trusted by society.
-
② Information Security Policy
When establishing an information security management system to protect information assets, we will formulate and adhere to an information security policy that will serve as the foundation of the information security management system, and continuously review and improve the content of said policy.
-
③ Protection of Information Assets
We shall implement appropriate control measures in accordance with each business situation to ensure the protection of information assets from threats to their confidentiality, integrity, and availability.
-
④ Compliance with Laws and Regulations
We shall comply with all applicable laws, regulations, rules, and contractual requirements to achieve information security.
-
⑤ Education and Training
We will provide education and training to raise the awareness of information security among all personnel involved in our operations and to ensure that our information security policy is widely understood.
-
⑥ Prevention of and Response to Incidents
By operating an information security management system, each and every one of us shall strive to prevent the occurrence of information security incidents.
Should an incident occur, we will promptly take appropriate measures, including measures to prevent a reoccurrence. -
⑦ Audit
We shall periodically audit the information security management system, and take corrective measures as necessary to ensure information security.
-
⑧ Continuous Improvement
We shall set information security targets every year, define and plan activities to achieve the targets, review the results of implementation, and set information security targets for the following year. In addition, we will evaluate and review the Information Security Policy and related internal rules and management systems on a regular basis to continuously improve information security.
Personal Information Protection Policy
Primagest,Inc. (hereafter referred to as "we", "us", or "our Company") is a leading image solution company that provides solutions for processing document image information for our customers. In doing so, we take the utmost care to maintain the confidentiality of the information we receive. In particular, we recognize that personal information is just as important to us as it is to you. For this reason, we have established a management system to protect personal information handled in the course of business, and by complying with this system, we intend to carry out highly transparent corporate activities to earn the trust of all those who have provided their personal information. We shall handle personal information in accordance with the following protection policy.
Established on May 6, 2004
Revised April 1, 2020 (Sixth Edition)
Hideaki Inagaki, President
-
1.
Personal information acquired by our Company will only be used for the purpose stated at the time of acquisition when consent was obtained by notifying the individual at the time of acquisition, and will not be used for any purpose other than the purpose stated at acquisition. In addition, we will not provide personal information to a third party without the consent of the individual. Lastly, personal information received from customers during the operational testing of equipment for the purpose of converting personal information into images or text data, or in the course of contracted work for the same purpose, will be handled only to the extent necessary to achieve the purposes of the respective contracts and will not be used for any other purpose. We will not use personal information for any other purposes.
In order to ensure the above, we take measures to prevent the use or provision of personal information for purposes other than those stated above. Our personal information protection manager will periodically check the status of personal information handling, and our personal information protection auditor conducts internal audits of our personal information protection management system. -
2.
In operating the personal information management system, we will comply with the requirements of the Personal Information Protection Law and related guidelines, regulations related the protection of personal information, industry guidelines, and the JIS Q15001.
-
3.
In order to prevent the loss, destruction, falsification, leakage, etc. of all personal information handled in the course of business, we will implement appropriate and reasonable security measures against risks such as unauthorized access, and we will strive to protect and properly manage all personal information. In the unlikely event of an incident involving personal information, we will promptly take measures to prevent the spread of damage, analyze the causes of the accident, identify and eliminate current problems, and take steps to prevent a reoccurrence.
-
4.
We will continuously review and improve our personal information protection management system in response to changes in social conditions and advances in information technology.
-
5.
Any questions or complaints regarding our Company's handling of personal information will be appropriately handled by the [Inquiries/Consultation on Privacy Management] office below.
(Weekdays 9:00-17:30)
E-mail: privacy@primagest.co.jp
Inquiries/Consultation on Privacy Management, Corporate Planning Department
About Our Use of Personal Information
About Our ISO 27001 Certification
Primagest,Inc. has acquired the ISO/IEC 27001 (formerly ISMS/BS7799) certification, the international standard for information security management systems.
Today, many corporations must meet the demands of a globalized market. We believe that providing services based on the international standard ISO/IEC 27001:2013 is the most effective way to maintain and improve the level of information security.
We are committed to further improving our information security management system and providing more secure and beneficial services.
-
Applicable StandardsISO/IEC 27001:2013
-
Registration NumberJQA-IM0370
-
Scope of Certification① The design, development, and production management of hardware and the design and development of software and system integration services related to image information solutions.
② Maintenance of software and hardware related to image information solutions.
③ Scanning services for forms and documents.
④ Data entry services. -
Office NameHeadquarters, Osaka Branch, Nagoya Sales Office, Capital Area Technical Center, Tokyo P2I Yotsuya Center, DPOS Omiya, DPOS 2 Omiya, National Health Insurance Operations Center, Machida I2D Center, Sasaduka Center, DPOS Nagoya, DPOS Itami, SEJ Osaka Scanning Center, Sapporo I2D Center
-
Certification BodyJapan Quality Assurance Organization (JQA)
-
Registration DateSeptember 1, 2021
-
Initial Registration DateSeptember 1, 2006
-
Certification Mark
