Basic Policy for Information Security
Nishimura & Asahi (Gaikokuho Kyodo Jigyo) and Nishimura & Asahi LPC, and our overseas offices (specifically, it refers to the offices listed in "Locations" on this page excluding affiliated offices) (hereinafter collectively referred to as “Nishimura & Asahi”) are responsible for protecting from various threats the information assets received from clients and business acquaintances and our own information assets, and is committed to establishing and operating an information security management system in compliance with ISO27001. *
Nishimura & Asahi has established the basic policy described below and is taking steps to thoroughly implement it.
- Efforts to Establish Information Security
Establish an information management system, enact rules and provisions to securely implement the system, and effectively operate the system.
- Compliance with Laws, Regulations, and Norms
Comply with all laws, regulations, and other norms pertaining to information security as well as contractual security requirements.
- Protection of Information Assets
Protect the information assets held by N&A from all threats, and implement measures to protect their confidentiality, integrity, and availability.
- Accident Responses
Endeavor to prevent accidents involving information security, and if an accident occurs, promptly investigate the relevant facts, analyze the cause, and take appropriate responsive measures, including those to prevent its recurrence.
- Education and Training
Conduct the necessary education and training to ensure that all attorneys, professionals and staff members fully understand the importance of information security.
- Continuous Improvement
Regularly confirm that this Policy is being complied with, and make efforts to continuously review and improve its effectiveness.
Nishimura & Asahi
Ryutaro Nakayama, Managing Partner and Information Security Management Supervisory Partner
* Please note that N&A does not currently have ISO27001 certification.