Structure

Information Security Policy at Mercari Group

As part of our security initiatives, we are committed to following our Information Security Policy to ensure that users can feel at ease using our services.

Structure

At Mercari Group, we recognize that appropriate information management is a crucial part of running our services, and strive to maintain the trust that our customers, business partners, and society as a whole have placed in us. As part of our security initiatives, we are committed to abiding by the following Information Security Policy to ensure that our customers can feel at ease using our services.

Organization

Information security management organization chart

Information security management organization chart
Policy

Building an Information Security Management Organization

In order to drive information security measures encompassing the entire company, Mercari Group has established an Information Security/System Risk Committee and has appointed a Chief Information Security Officer (CISO). We also assign a person responsible for information management in each company to ensure appropriate decision-making regarding relevant policies. Through this, we have built an organization that can carry out information security measures swiftly.

Assigning a Person Responsible for Information Security Management

Mercari Group assigns a person responsible for information security management to promote security measures and protect and appropriately manage information assets.

Managing Information Assets Appropriately

Mercari Group manages information assets handled by Mercari Group appropriately based on the confidentiality, integrity, and availability of the assets.

Carrying Out Cybersecurity Measures

Mercari Group has established a cybersecurity organization, measures to prevent attacks, and preparations to handle attacks if they do occur. We strive to ensure and enhance security to protect information assets from cyberattacks and any other information security threats.

Improving Information Security Literacy

Mercari Group continuously works to educate all Mercari Group employees about information security.

Managing Contractors

In the event that Mercari Group outsources work to a contractor, we strive to ensure that the contractor has a level of information security equal to or above that of Mercari Group.

Abiding by Laws and Ordinances

Mercari Group strictly adheres to all laws and regulations, as well as contracts with users, business partners, employees, etc., and handles information assets in a suitable manner.

Continuously Improving

Mercari Group strives to continuously improve information security by periodically evaluating and reviewing the above initiatives.

Reporting a Vulnerability

Reporting a Vulnerability

Read more