Information Security Policy

Spiceworks Co., Ltd contributes to society by providing information services.
At our company, the management of information security is an incredibly important part of our business practice.
This includes the personal information including information assets of our clients, as well as personal information our employees (not just company employees, but also any part-time or contract workers).
We understand that it is our societal responsibility to strictly protect any personal information (including information assents) and have thus developed this policy.
Our employees are required to comply with the following security measures in order to keep all information assets protected.

1. Definition of Information Security

Information security is defined as the protection of information assets from threats and ensuring their confidentiality, integrity, and availability.

2. Goal of Information Security

Our goal is to decrease the risk of information asset leakage or damage to the lowest level possible.

3. Scope of Application

All information assets that are involved with our business practices are included.

4. Compliance Measures

We will comply with all applicable laws and regulations concerning privacy protection in handling any personal information.

5. Information Security Education, Training, and Awareness

We are regularly conducting information security education and training for all employees.

6. Business Continuity Plan

We have a business continuity plan in place that we continue to formulate, maintain, and review.

7. Continuous Improvement

In consideration of technological advances and business environment changes, we conduct risk evaluation for information regularly through various means, and we consistently plan the maintenance and improvement of our information security policy.
Regular inspections on our operational conditions of information security are conducted and appropriate corrective measures are taken,
if necessary, to maintain safety conditions.

8. Penalties

If any employee is found posing a risk to the information assets within our company’s scope of application,
they will be severely penalized in accordance with their contract and company policies.

Implemeted:Match 20, 2015
Spiceworks Co., Ltd
CEO Seiji Sekine

【Registered Information】

『JQA-IM1344』 ISO/IEC27001:2013 Spiceworks Co., Ltd

Registration Date


Registration Update Date


Expiration Date


Scope of Registered Activities

Constuction and design of websites based off client requests

Declaration of Conformity

Declaration of Conformity (4th Edition)