Basic Approach to Information Security

Japan Exchange Group, Inc., Tokyo Stock Exchange, Inc., Osaka Exchange, Inc., Tokyo Commodity Exchange, Inc., Japan Exchange Regulation, and Japan Securities Clearing Corporation (hereinafter collectively "JPX Group") carry out the following actions to properly protect information assets.

  1. Develop systems that enable smooth implementation of information security measures.
  2. Clearly define roles and responsibilities for proper handling of information assets.
  3. Categorize information assets by level of importance and implement security measures suitable to each such level.
  4. Take a comprehensive approach to security controls that encompass administrative, logical, and physical security measures for information assets.
  5. Prepare manuals and other relevant documents to facilitate implementation of our information security policy.
  6. Manage vendors by stipulating security measures when entrusting work that involves handling of information assets to third-party vendors outside of JPX Group.
  7. Offer regular education and training on information security matters.
  8. Verify compliance with information security policy on a regular basis.
  9. Assess and review information security policy on a regular basis to continually improve its suitability, adequacy, and effectiveness.
  10. Develop countermeasures and reporting procedures as preparation in the event that information security issues that can have a material impact on business operations arises.