Information Security

Our Basic Approach to Information Security

Within the Fujitsu Group, the commitment to information security is seen as an expression of the Corporate Values of the Fujitsu Way, which says that we seek to become our customers' valued and trusted partner, and to build mutually beneficial relationships with our business partners. This commitment also leads to the practice of maintaining confidentiality, which is included in the Code of Conduct. We see it as a vital aspect of our social responsibility.

In line with this approach, we have established the Fujitsu Group Information Security Policy, consistent throughout the world, and we are promoting information security in accordance with it.

Fujitsu Group Information Security Policy [24.5 KB / A4 / 2 pages]

Our framework of information security rules

Each Group company codifies related rules in accordance with the Fujitsu Group Information Security Policy, and implements information security measures.

Strengthening Information Security at the Business Group Level

To assure the strongest possible information security management, we are working to implement a security management structure.

The Group operates in a wide variety of industries and is promoting individual businesses by organizing them into business groups. Information security measures are implemented to reflect the individual characteristics of each business.

A number of business units at Fujitsu and some domestic Group companies have acquired ISMS (Information Security Management System) certification and are working to provide thorough management of confidential information including customers' information.

Teaching and promoting awareness of information security

Starting in FY 2008, using a common slogan which translates as "Declaration for complete information management! Information management is the lifeline of the Fujitsu Group," Fujitsu and domestic Group companies displayed posters at each of their business locations, and we also affixed information security awareness stickers to all the business PCs used by employees. We introduced a remote data deletion solution (CLEARSURE) and a mail checker (SHieldMailChecker) tool to prevent e-mail being sent outside the company in error, and in parallel with promoting the use of ICT we increased the awareness of information security among all employees.

E-learning courses are held for all employees including executives every year.

Personal Data Protection Initiatives

We have stipulated a Personal Data Protection Policy and Rules for Management of Personal Data in accordance with Japan's Act on the Protection of Personal Information. Based on these rules, we give education on how private information should be handled and carry out surveys in an ongoing effort to strengthen the protection given.

In August 2007, we acquired company-wide PrivacyMark certification and this was renewed in September 2009. Domestic Group companies are also acquiring PrivacyMark certification individually as necessary, and promoting thoroughgoing management of personal data. Overseas Group companies are also publishing privacy policies that meet their various national legal and social requirements on their main public Internet websites.