Fujikura classifies risks to be managed into risks related to business opportunities (strategy risks) and risks related to the performance of its business activities (operational risks). Strategy risks are managed by top executives jointly through the Board of Directors and the Management Committee, while operational risks are managed by the Risk Management Committee based on the Fujikura Risk Management Rules. With crisis management, we provide information to top management promptly and have established a response organization and a management system in the Fujikura Risk Management Rules.As for operational risks, we manage a range of incidents daily that take place in our corporate activities, including those related to compliance, quality assurance, environmental management, safety and health, and information security under a system led by in-house organizations specializing in each of the fields. The Legal Department, Quality Assurance Division, Human Resource Division, Corporate Communications Division, General Affairs Division, Information Business System Engineering Division, Security Export Control Division, Finance & Accounting Division, and other in-house expert organizations handle such incidents. They direct actions in each business division to fulfill the social requirements demanded of the company and to ensure continued development of the company, and urge the selection of the most appropriate course of action.
These in-house organizations work to ensure that the directors and employees behave appropriately in compliance with social norms as well as with laws and regulations so that the Company can win even more trust from a range of stakeholders including customers, consumers, employees, business partners, and shareholders.
Through various risk management activities, the policy is to prevent or minimize the occurrence of losses in the management of the Fujikura Group, build a foundation for sustainable and healthy growth, and maintain and improve corporate value.
Awareness of Important Risks
In detail, "Company-Wide Risks" are managed through risk management activity based on the PDCA cycle: 1. Identify and Assess risks, 2. Identify important/urgent risks, 3. Create and implement risk countermeasures, 4. Monitoring.
Initiatives in FY2020
The Risk Management Committee met 23 times in fiscal 2020. The status of risk management and BCM promotion is reported by each division and company at regular Risk Management Committee meetings. At Risk Management Committees meetings that were convened as needed, the committee handled response to earthquakes and other natural disasters, support for and actions taken on disasters at overseas Group companies, and investigation of the impact of quality improprieties at other companies on Fujikura.
With the progress of this highly information-oriented society, the importance of information and the use of information systems are dramatically increasing in corporate activities. In particular in recent years, risks associated with electronic information are expanding, and we regard the implementation of information security measures as a top priority in our business activities. The senior vice president and member of the board in charge of the Information Business System Engineering Division serves as the chairperson of the Fujikura Group Digital Information Security Committee. This committee established the Fujikura Group Basic Principles on Information Security and the Basic Rules on the Security of Electronic Information in 2005 to properly protect all information assets handled by the Fujikura Group
Looking ahead, we will aim to further raise the bar of our information security practices by further reinforcing information security promotion activities through information security education and the steady and consistent implementation of information asset management. Our goal is to be a group of companies trusted by society that ensures the safety of all information assets.
Basic Principles on Information Security
- Prevent illegal invasion, leakage, falsification, and destruction of information assets by implementing appropriate personnel, physical, and technical measures and never become a wrongdoer in this regard.
- In the event of a security incident, give a prompt responses to minimize the damage.
- Conduct security activities on a continual basis, establish a security management system to respond to new threats, and ensure higher safety through these activities.
Activities in FY2020
The Fujikura Group Digital Information Security Committee conducted information security training through e-learning for employees of the main business locations in Japan and overseas. In addition, as a countermeasure against targeted e-mail attacks, we conduct drills using simulated e-mails to familiarize employees with appropriate countermeasures, and we also provide information on the company intranet to prevent damage and ensure thorough implementation. And, we have conducted security vulnerability assessments of devices connected to the Internet, and have addressed any areas that have been pointed out.
We also launched the Computer Security Incident Response Team (CSIRT) and established an emergency response system to minimize the impact of security incidents on business operations and customers to the extent possible.
At Fujikura, we firmly believe that names, addresses, phone numbers and e-mail addresses and other personal information that can be used to identify individuals must be handled properly. For this purpose, we have established and practice a policy for the collection and handling of personal information.
In addition to strict compliance with the laws, regulations and guidelines set forth by the relevant Ministries of Japan, we also endeavor to exercise the proper handling of personal information through corporate regulations that establish internal systems and management mechanisms for personal information and provide training and education for our employees.
The basic policy for the proper handling of the personal information is prescribed in our corporate regulations, which are outlined in the following:
Purpose of Collection/Use
Fujikura Ltd. is a listed corporation that operates businesses in the following four domains. In the course of pursuing the efficient operation of these businesses efficiently, Fujikura may collect and use the personal information that it may deem useful for this purpose.
With the aim of promoting deeper and accurate customer understanding of our company, Fujikura may desire to provide customers with various information on our corporate activities, and, therefore, may use collected personal information for this purpose.
Information provided by Fujikura is not limited to its products and services, but may also include accounting information related to its state of business as well as general information on its activities.
-Power & Telecommunication System Segment - manufacture and sales of optical fiber cables, communication network equipment and related components, industrial power wires, metallic communication cables and various cable accessories.
-Electronics Business Segment - manufacture and sale of printed circuit boards, electronic wires, micro-heat pipes, etc.
-Automotive Products Segment - manufacture and sale of automotive wiring harnesses and related components and membrane switch.
-Real Estate Segment – leasing of real estate, and others
The collection and use of personal information by Fujikura extends only as far as its collection and/or use can be considered to reasonably satisfy or relate to the Purposes of collection/use stated above. Within this framework, Fujikura may collect personal information using appropriate and accepted procedures.
Provision of Personal Information to Third Parties
Fujikura will not provide the personal information to any third party unless it is prescribed by the law or Fujikura has the approval of the concerned individual.
If an individual requests disclosure, correction, deletion or discontinuation of use of personal information collected and held by Fujikura in accordance with the procedures outlined in the next article, Fujikura will satisfy the request within a reasonable period and scope of action in accordance with all applicable laws and regulations.
Application for Disclosure
Requests related to personal information collected by Fujikura in connection with article 4 above and other inquiries related to personal information should be submitted by following the procedure below.
Fujikura may not accept a request or inquiry if it is not submitted in accordance with the specified procedure. Any fees incurred to respond to the request or inquiry such as the mailing costs shall be borne by the person submitting the request or inquiry.
Violations in FY2019
No violations were confirmed in fiscal 2019.
With operations taking place globally, the Fujikura Group prepares to comply with tax rules by constantly gathering BEPS*3 information and concluding consulting agreements with licensed tax accountants. Following the BEPS project on international taxation and pursuant to Japans’ revised tax system of FY2016, we submitted our master file for tax year 2016, the initial fiscal year of application, along with tax reports for each country where we operate, to the tax authorities. Since FY2017, we have been preparing local files for each applicable transaction.
*3 BEPS stands for Base Erosion and Profit Shifting. It indicates actions of multinational corporations to shift profits to Group companies located in a country with a lower tax rate to reduce tax burden.