As an agency engaged in pharmaceutical communications, ensuring the security and managing the risks of confidential client and product information, as well as collected personal information (hereinafter referred to as “information assets”), is an essential task. We recognize that the proper management of information assets is our fundamental responsibility to our clients and society.
To ensure the proper management of information assets, we implement the following security measures against unauthorized access, destruction, falsification, leakage, loss, and other threats:
1.Appointment of an “Information Asset Protection Manager”
2.Under the Information Asset Protection Manager, clarification of employee authority and responsibility, and the establishment and operation of a “Management System for Information Asset Protection”
3.Regular verification and improvement of the management system through internal audits
4.Compliance with the Personal Information Protection Act and other relevant laws and regulations
5.Implementation of reasonable network measures to prevent unauthorized access, leakage, etc.
6.Other measures to fulfill the “Duty of Care of a Prudent Manager” regarding the handling of information assets