Information Security Basic Policy

Information assets (such as information and information systems) are the most important assets of UNITEX Corporation ("UNITEX") in a business activity incidental to "Production & Sales of information processing related products". UNITEX believes that to protect the information assets from threats on information security is our social responsibility. UNITEX considers that making efforts to the protection of information assets makes our credit stronger. So, UNITEX makes and operates Information Security Management System ("ISMS") and responds to our customers' trusts by necessary protections and proper safety countermeasures to our and customer's information property.

1. Basic Policy

UNITEX recognizes the importance of information assets, and implements ISMS. In addition, UNITEX audits periodically in order to preserve the effectiveness of the ISMS and will strive to improve continuously.

2. Statement of management's intention

UNITEX, by expressing the intention of the management team on our commitment to security information, and to clarify the guideline main action based on it, and then build and operate the ISMS properly. Also, UNITEX ensures the confidentiality, integrity and availability of critical information assets and keep its effectiveness continuously.

3. Purpose

UNITEX establishes the following information security objectives and makes sure to execute the various measures to achieve the objectives.

• Respect and comply the contract with the customers as well as legal or regulatory requirements
• Prevent the information security accidents in advance
• Protect the information assets from threats on information security

4. Information Security Management System

UNITEX set up a committee responsible for information security management and appoints an information security supervisor for the operation of the ISMS. In addition, UNITEX develops the organizational structure required to ensure the effective operation of the ISMS in each department and the implementation of company-wide initiatives.

5. Risk assessment

UNITEX, in order to maintain the risk of dealing with all the important information assets as acceptable levels, established systematic procedure for risk assessment and takes appropriate measures based on risk assessment.

6. Management and protection of personal information

UNITEX, in order to secure the safety and accuracy of personal information, builds the "Personal Information Protection Management System" defined by "Personal Information Protection Policy". Also, UNITEX takes measures for prevention of unauthorized access to personal information and loss/destruction/alteration or leakage of personal information and takes corrective action.

7. Compliance with laws and regulations

UNITEX has established the basic policy and internal policies to meet regulatory requirements or to comply with the law such as Personal Information Protection Law, Unfair Competition Prevention Law and Unauthorized Computer Access Low, and complies with security obligations on the contract with customers and us.

8. Education and training for information security, and full dissemination to the employees

At UNITEX, we provide comprehensive information security education and training to all employees. Our objective is to enhance their knowledge and skills while emphasizing the critical importance of information security.

9. Continuous improvement

UNITEX's ISMS will be subject to regular audits and reviews to ensure its continued effectiveness. Furthermore, the ISMS will be adjusted to accommodate changes in management, social, technological, and legal factors.

Established: November 1, 2009
Revised: July 1, 2024
Unitex Corporation
President
Emi Kosugi