Data Privacy & Security

Basic Approach

Today, where the use of advanced technologies such as AI is expanding, NSD is working on data privacy and security as one of our most important challenges in order to earn the trust of customers and society.
Recognizing security incidents such as leaks, unlawful disclosure of information, and unintended data inflows into AI systems as major risks for corporate management, we strive to safely and securely handle information assets and to thoroughly implement data governance to respond to the latest threats, as a company that handles important information for customers and employees.

Basic Policy on Information Security

To maintain the confidentiality, integrity, and availability of all information assets, thereby earning the trust of customers and society, NSD has established its Basic Policy on Information Security in an effort to ensure the security of information.
Moreover, specific measures are stipulated in the Information Security Standards and Information Security Procedures as sub-provisions of the Basic Policy on Information Security to ensure that measures are effective.

Basic Policy on Information Security
  1. 1We will establish and comply with an information security policy in order to protect information assets from the threats of disaster, damage, negligence, and willful intent.
  2. 2We will make our employees aware of the importance of information security and ensure that they are fully aware of our policy so that they can handle information assets appropriately.
  3. 3We will comply with laws and regulations regarding information security and the protection of personal information.
  4. 4We will inspect and audit our compliance with the information security policy in an effort to operate it appropriately.
  5. 5We will continuously ensure the effectiveness of our information security policy in response to social and technological changes.

Establishment of an Information Security Management System

NSD has established the Information Security Committee under the Risk Management Committee to strengthen information security. The Information Security Committee, which is chaired by an executive with extensive information security knowledge and comprised of related officers and department managers, regularly identifies information security risks throughout the Company, and in addition to giving guidance on preventive measures, confirms the Company's compliance with the rules.
Moreover, we are taking physical measures by developing systems such as equipment and functions to prevent the risk of information leaks, malware and other virus infections, as well as unauthorized access to the Internet and e-mails.

Employee Training on Information Security

Today, where the use of advanced technologies such as AI is expanding, NSD is working on data privacy and security as one of our most important challenges in order to earn the trust of customers and society.
Recognizing security incidents such as leaks, unlawful disclosure of information, and unintended data inflows into AI systems as major risks for corporate management, we strive to safely and securely handle information assets and to thoroughly implement data governance to respond to the latest threats, as a company that handles important information for customers and employees.

Cyber Attack Countermeasures

IIn addition to information leaks by hackers, ransomware and organized cyberterrorism targeting vital infrastructure have become major risks in recent years.
In light of these advanced security risks, we regularly conduct comprehensive vulnerability assessments by third-party specialists in order to eliminate potential risks. Furthermore, in addition to enhanced features such as targeted attack countermeasures, firewalls, and intrusion prevention systems (IPS), we have optimized endpoint security and access control.
In response to increasingly sophisticated targeted email attacks, we are working to build a human firewall (human defense layer) by strengthening our technical defenses and raising employees' security awareness through education.