Security Policy

Alfresa Holdings Corporation and its group companies (hereinafter referred to as "the Group") adhere to the Group’s principles and comply with laws, regulations and other standards related to information security in response to the digital society. As a responsible player in the pharmaceutical supply chains, which constitute a vital social infrastructure, the Group is dedicated to protecting and appropriately managing the information it handles in its business activities, safeguarding it from various threats and maintaining robust information security.

■Information Security Governance Structure

The Group establishes a governance structure for information security and necessary rules to ensure appropriate and effective operations.

■Implementation of Information Security Controls

The Group implements appropriate measures regarding information security, working to prevent information leakage, data falsification, loss, date destruction, and unauthorized access, and to minimize any potential damage.

■Information Security Education and Awareness

The Group provides regular information security training programs to its employees to maintain and continuously improve the Group’s information security system.

■Information Security in Supply Chain Management

The Group requests its suppliers handling the information provided by the Group to maintain appropriate information security, thereby ensuring the protection and proper management of information throughout the Group’s supply chains.