Implementing a risk management framework
Through our Governance Committee, we monitor different SATO subsidiaries and guide them to operate properly with risk awareness and a thorough understanding of business management basics. We also have other committees to manage specific risks categorized as follows.
There are risks that the company would take in driving business when making investments and loans, acquiring and disposing of stock and fixed assets, entering into business partnerships or important agreements, and selling/buying businesses.Our Business Risk Committee, which reports directly to the board of directors, is responsible for analyzing and monitoring business plans proposed by executives for such risks upon the board’s request. The committee’s input and reports facilitate more thorough deliberations at board meetings to help the management make important business decisions with the objectives of minimizing risks and maximizing returns.
There are also risks associated with natural/man-made disasters, work accidents, fraudulent/illegal employee conduct, IT/cybersecurity threats, legal compliance, and other unforeseen circumstances that would significantly harm our business value.Our Risk Management Committee is responsible for determining preventive actions to minimize any resulting damage and drawing up crisis countermeasures should such risks occur.
Strengthening information security
We regard information security as an important business imperative, and apply rules and procedures for managing and protecting information assets based on our information security policy to drive security measures across the SATO Group. Under our in-house Risk Management Committee, we have established an Information Assets Management Committee that ensures security measures and account/access control methods are in place to keep information systems safe starting from their development to implementation and maintenance, on top of governing the management of information assets. Our Auditor Office also helps to monitor how our information assets are being used and managed.
SATO Corporation acquired the international ISO/IEC 27001:2013 certification and its Japanese counterpart JIS Q 27001:2014 under the Information Security Management Systems (ISMS) scheme, in regard to the company’s B2B2C Project that delivers services to visualize and analyze customer/employee behavior in retail operations.
|Operator name||SATO Corporation|
|Standards certified||ISO/IEC 27001:2013
JIS Q 27001:2014
|Certificate number||IS 721656|
|Date certified||November 25, 2020|
|Business subject to certification||Developing, delivering and servicing/operating marketing applications in the B2B2C Project|
|Certifying organization||BSI Japan|
Protecting intellectual property
Since our founding, SATO has always sought to offer products and services that solve operational problems for our customers, in the spirit of Ceaseless Creativity. Through the development of new products and services, we build up a portfolio of intellectual assets that are important to the company’s present and future. To protect these resources, we have established a basic policy with actions set out as follows, which we will use toward securing our freedom to operate and increasing our corporate value to contribute to a better and more sustainable world.
Create and make use of intellectual property
We encourage creative work throughout our group so as to drive the creation of intellectual property that benefits our group businesses while maximizing its use to pursue sustainable growth.
Respect intellectual property rights
We comply with laws governing patents, utility models, industrial designs, trademarks, copyright, trade secrets and employee know-how in different countries, making sure we respect the valid intellectual property rights of third parties to minimize any related risks.
Provide intellectual property training and education
We educate employees to increase their awareness about intellectual property and enable more intellectual property activities.