Risk Management
Shareholders and Investors, Customers, Suppliers and Other Trade Partners, Employees, Local communities, Global Environment

Risk Management

Risk Management Initiatives

The Risk Management Committee shares the results of annual risk surveys conducted at Group companies in Japan and overseas, selects important risks that should be recognized by the Group, and prioritizes responses.
The following is an introduction to the risks we recognize and the measures we are taking (excerpt).
Related information: Basic Approach to Risk Management and Risk Management Structure

Business Continuity Risk

Large-Scale Disaster

We have formulated a Business Continuity Plan (BCP) to ensure a quick return to normal business activities in the event of an earthquake or other large-scale disaster. We started with the Automotive Anti-Vibration Business Divisions in 2010, and have now completed the formulation of BCPs for all domestic bases, including all the group companies. Currently, we are confirming the effectiveness of the BCPs, evaluating the linkage of each BCP, and conducting drills for further spiral improvement.
In addition, in 2018, we began creating a disaster initial response plan focusing on the initial response in the event of a large-scale disaster. We are conducting drills based on the prepared plan to improve the effectiveness of the plan. In addition, we are working to share information on the status of procurement in the event of disasters or accidents.

Infectious Diseases

In response to the outbreak of the new coronavirus infection, our company has established a system to respond quickly by setting our own phase-specific countermeasures linked to the regulations and restrictions issued by the national and prefectural governments. By expanding remote-work by promoting online operations, reviewing infection control measures including manufacturing process and cafeteria facilities, we are committed to thorough infection prevention measures. We will continue to operate with the safety and health of our employees as our top priority.
Based on the knowledge gained from these infectious disease countermeasures, we have formulated the "Sumitomo Riko Group Action Plan for Countermeasures Against New Infectious Diseases", which is a complete revision of the "Sumitomo Riko Group Action Plan for Countermeasures against Highly Virulent New Influenza" created in 2011, and are working to expand our crisis management system.
From now on, we will strive to strengthen the countermeasures against infectious diseases and business continuity throughout the Group by spreading the action plan to overseas group companies as well.

Related information: Response to Covid-19 Pandemic

Risks of Information Leakage

Protection of Personal Information

In accordance with the "Personal Data Protection Policy" and "Basic Rules for the Protection of Personal Information," we handle the personal information of our customers, business partners, and employees in an appropriate manner while complying with the laws and other regulations regarding the protection of personal information.
In addition, in response to the EU General Data Protection Regulation (GDPR) and other global trends toward tighter regulations, we are working to respond to revisions of the legal systems in each country and region, and the entire Group is strengthening its personal information management system and addressing the risk of information leaks.

Information Security Measures

As a basic policy for information security, we have formulated and are operating the "Information Security Rules" and related standards. Although the state of information security has been improving year by year, we will further strengthen the information management of domestic and overseas group companies to cope with new laws and regulations and risk threats, and strive to improve the level of information security on a global basis.
In addition, in response to the increasing risk of information security incidents such as data corruption and information leaks due to cyber-attacks around the world, we established and operated the Computer Security Incident Response Team (CSIRT) in 2017, a system to promote organizational measures throughout the Group.
In light of the increase in the frequency of remote-work due to restrictions on work attendance and business travel under Corona Pandemic since the end of fiscal 2019, we are working to reduce risks by developing a secure IT environment at home and expanding user education.

Security Export Control Risks

In order to comply with export regulations for the purpose of international security, we have established internal regulations for export control and have established an export control system with a director as the chief officer in charge.
When exporting, etc., we conduct appropriate screening of individual business negotiations and obtain individual export permits before carrying out export activities.
For employees and other related personnel, we conduct regular training based on the latest case studies, selected by the target group, in an effort to build awareness and acquire knowledge of security export control among related personnel. In addition, we constantly monitor the appropriateness of our activities by confirming the status of control within the company and at affiliates, and share information among internal departments and affiliates through the Risk Management Committee in order to reduce security export control risks for the entire Group.