Information Security Policy

IS 737189 / ISO27001

Fundamental principle
Delight, Inc. (hereinafter referred to as "Delight") conducts business under the philosophy of "solving social issues through sports".
Information assets, including customer information, handled as part of the Company's business are extremely important to the Company's management foundation.
Recognizing the importance of protecting information assets from risks such as leakage, damage and loss, all those who handle information assets, including directors and employees, will comply with this policy and practice activities to maintain the confidentiality, integrity and availability of information assets.

Basic policy
In order to protect our information assets, we will formulate our information security policy and related regulations, and conduct our business in accordance with them, while complying with laws, regulations and other standards related to information security, and with the terms and conditions of our contracts with our customers.

We shall establish a systematic risk assessment method and conduct periodic risk assessments by clarifying the criteria for analyzing and evaluating the risks of leakage, damage, loss, etc. that exist for information assets. Based on the results of the assessment, we will implement necessary and appropriate security measures.

We will establish an information security system led by the director in charge, and clarify the authority and responsibility for information security. In addition, we will regularly provide education, training and awareness-raising programs to all employees to ensure that they recognize the importance of information security and handle information assets in an appropriate manner.

We will regularly inspect and audit the compliance with the information security policy and the handling of information assets, and promptly take corrective measures against any deficiencies found and items for improvement.

The Company shall take appropriate measures against the occurrence of information security events and incidents, and in the unlikely event that they occur, the Company shall establish procedures for minimizing damage in advance, and shall promptly respond to emergencies and take appropriate corrective measures. In addition, we will establish a framework for managing incidents, especially those involving business interruptions, and review it periodically to ensure the continuity of our business.

We will establish an information security management system that sets targets for the realization of our basic philosophy, and we will implement the system and review and improve it on a continuous basis.

September 1, 2020 Establishment
President Hiroyuki ANNO