The Oji Group undertakes business activities with a strong sense of ethics set forth in The Oji Group Corporate Code of Conduct, and implements appropriate risk management practices. In response to the rapid expansion of the areas where we operate businesses, we will reinforce our risk management structure globally to ensure business continuity and the steady development of our businesses.
Under the development and supervision by the Board of Directors, the Oji Group has established Group Risk Management Regulations and works to manage risks in the flow described below.
Oji Holdings Directors are responsible for reporting to the Board of Directors on risks in the businesses and divisions under their control.
The Oji Holdings Board of Directors reviews the effectiveness of the risk management process annually.
The Oji Group's risk management system is structured as shown in the diagram below and operates separately from the Audit & Supervisory Board and the Internal Audit Department.
The Audit & Supervisory Board and the Internal Audit Department also audit the status of risk management.
The Oji Group positions information obtained through its business activities as important assets. We have enacted Information Systems Usage and Risk Management Regulations to respond promptly to changes in the ever-sophisticating IT environment, and have established all group system to prepare for cyber threats such as unauthorized across prevention and disasters. The Oji Business Center, as a department that oversees our information system risk management, inspects the information system risks across the Group, and maintains, manages and improves IT security. In addition, it regularly provides educational activities and information on the latest risk trends it has captured to employees using company newsletters, and conducts targeted email training for employees to deal with phishing e-mails that are becoming more sophisticated every day. In FY2021, we revised regulations to respond to changes in work styles, such as the spread of cloud computing and teleworking in times of COVID-19. We will work to make sure that these measures will take hold and further strengthen our efforts to improve IT security from a global perspective.
