Information Security Policy
Our commitment to protecting client data and maintaining the highest standards of information security
Basic Security Principles
NSM Asset Management Co., Ltd. recognizes information security as a critical foundation for business operations and is committed to protecting all information assets of our clients, partners, and company.
Security Objectives
Confidentiality
Ensuring that information is accessible only to authorized personnel and preventing unauthorized disclosure.
Integrity
Maintaining the accuracy and completeness of information and preventing unauthorized modification.
Availability
Ensuring that information and systems are accessible when needed by authorized users.
Security Measures
1. Access Control
We implement strict access controls based on the principle of least privilege, ensuring users have access only to the information necessary for their roles.
2. Data Encryption
All sensitive data is encrypted both in transit and at rest using industry-standard encryption protocols to prevent unauthorized access.
3. Network Security
Our networks are protected by advanced firewalls, intrusion detection systems, and continuous monitoring to prevent unauthorized access and detect potential threats.
4. Employee Training
Regular security awareness training is provided to all employees to ensure they understand their responsibilities and can identify potential security threats.
Incident Response
We have established a comprehensive incident response plan to quickly identify, contain, and remediate security incidents. Our response process includes:
- Immediate incident detection and assessment
- Rapid containment and mitigation measures
- Communication with affected parties and authorities
- Post-incident analysis and improvement implementation
Compliance and Standards
International Standards
- ISO 27001 (Information Security Management)
- ISO 27002 (Code of Practice for Information Security)
Regional Compliance
- Japan Personal Information Protection Act
- GDPR (EU General Data Protection Regulation)
Security Contact
For security-related inquiries or to report potential security incidents, please contact our security team: