To avert business continuity crises and prepare for unforeseen circumstances, the Sanyo Chemical Group has established internal regulations to cope with each possible risk.
We conduct risk management by raising the risk awareness of employees by providing training and holding drills.
Risk Management System
For significant risks that may affect management strategies and achievement of business objectives, the Internal Audit Office works to reduce the risks, evaluating the situation and making improvements.
To address risks surrounding the company and the Group, internal regulations such as the Operational Responsibilities Regulations, the Basic Regulations for Product Liability (PL), and the Information System Security Regulations have been formulated, and the departments in charge manage the risks.
To ensure the reliability of financial reporting, we promote the establishment, operation, evaluation, and improvement of the internal control system related to financial reporting, and the Internal Control Committee guides and supervises these activities.
The Internal Audit Office audits the risk management status of each business execution department.
Risk-based audit
Internal Audit Office conduct internal audit across the organization by preparing a risk-based audit map for performing business and operations and by setting audit themes for each fiscal year with priorities taken into account.
Business continuity plan (BCP)
The Group draws up and operates BCPs that prepare for response in the event of a massive earthquake or a pandemic. The BCP Secretariat takes the initiative in conducting a review every year to make the BCP further effective. We also continuously hold practical drills in each region
Information management
Recognizing the importance of confidential information, we have the Security Management Regulations in place to prevent information leakage, ensure proper use, and prevent unauthorized acquisition, use, and disclosure of confidential information of third parties. We ensure security by establishing the Information System Security Regulations and the Personal Computer and Network Management Regulations, introducing a firewall and other network security systems, managing licenses for the use of information systems, and limiting access to the Internet. To raise the security awareness of employees and prevent information security accidents, we offer information security education every year.
Personal information protection
We have laid down the Privacy Policy, which stipulates the purpose and method of use of personal information, the management thereof, and a consultation desk. Based on this policy, we have established the Personal Information Protection Management Regulations and the Specific Personal Information Handling Regulations to ensure appropriate protection of personal information, including Individual Numbers under the Individual Number system. In the case of any contradiction or conflict between these regulations, the latter shall take precedence. An IT system is also in operation to ensure security.
We also comply with the Social Media Policy, which was formulated regarding the operation of official social media accounts and the use of social media by respective employees.
≫ PRIVACY POLICY
≫ SOCIAL MEDIA POLICY
Overseas crisis management activities
The Sanyo Chemical Group has established and implemented the Basic Regulations for Overseas Crisis Management, which set forth basic points for reducing risks that may cause harm to the lives, bodies, and property of the Group employees outside Japan, and for responding to an overseas crisis if such an event should occur. The regulations specify the crisis management organizations and the chain of command that will function in the case of emergency and define the responsibilities and authority of the Overseas Crisis Management Secretariat and the response headquarters, so that appropriate responses can be made accordingly. The Overseas Crisis Management Secretariat is established within the Personnel Division to constantly gather and analyze information and issue overseas travel warnings as necessary. When a BCP is implemented, the overseas crisis management organizations will work in coordination with the Business Continuity Task Force.
Internal Control
We, the Sanyo Chemical Group, declared in our Code of Corporate Ethics that it is essential corporate behavior to ensure legal compliance and to fulfill corporate social responsibility, which has been implemented to take the lead in the realization of a sustainable society. With good sense and integrity, we are committed to improving our society and are following our company mission, “Establish a better society through our corporate activities."
Structure
Internal control bodies and their roles
Internal Control Committee
The Internal Control Committee is in place under the direct control of the Board of Directors. The Internal Control Committee determines the basic policy on the overall internal control system, and provides instructions and supervision for the development, operation, evaluation, and improvement activities for the system.
Internal Audit Office
The Internal Audit Office gives advice on planning measures to cope with and avoid various risks related to business operations. The Internal Audit Office is also responsible for building, evaluating, improving, and reporting on the three internal control systems.
- Internal control related to the Companies Act
- Internal control related to financial reports (in accordance with the Financial Instruments and Exchange Act)
- Internal control related to risks other than financial reports
Regarding internal control related to the Companies Act, the basic policy on the internal control system was resolved by the Board of Directors and publicized in 2006 in accordance with the Companies Act and the Regulations for Enforcement of the Companies Act. It is reviewed as appropriate.
Regarding internal control related to financial reports, operational processing control and overall IT control, from company-wide internal control and sales to the financial reporting process, are evaluated. The results are compiled as the internal control report and are reported to the Internal Control Committee. The internal control audit report prepared by the accounting auditor is attached and submitted to the Kanto Finance Bureau.
Regarding internal control related to risks other than financial reports, a set of documents, including procedures for risk reduction measures against expected risks and self-check sheets, are prepared and posted on the intranet so that employees can read them at any time.