Basic Approach

Regarding the risks, we believe that appropriate risk-taking and effective risk management are essential for enhancement of corporate value, instead of only escaping from such risks. As an engineering company, we will continuously brush up our risk management ability and address the risks appropriately by fully making use of past lessons.
We identify all events and phenomena that may contain risks, including changes in business environment across all of our business operations, and clarify the processes, responsible divisions and applicable rules and regulations so as to classify, analyze, assess and handle the risks. To grasp and handle the latent risks as quickly as possible, we annually review them and thrash out major risk items to conduct risk management.

Information Security Initiatives

We recognize that it is our important responsibility to protect information that must be protected in accordance with laws and regulations, such as contracts with customers and business partners and the Personal Information Protection Law, as well as the Group's important know-how. We have established a Basic Policies on HSE, Quality and Information Security and are working on information security.
Information security management system We have obtained ISO/IEC 27001 certification, the international standard for information security management systems, in 2006 and have maintained this certification until now. Based on this management system, we are implementing and improving information security.
Protection of Personal Information In accordance with Japan's Law Concerning the Protection of Personal Information, TOYO has established a Privacy Policy and appropriately handles the personal information it holds. We have also established the GDPR Privacy Policy and are working to comply with the GDPR (EU General Data Protection Regulation).

◇Number of major information incident in FY2019: 0
 Number of major information incident in FY2018: 0

Risk Management of Group Companies

We implement the risk management of the Group Companies through a series of activities as follows:

(1) We establish Group Company Management Rules and clarify the authority and responsibilities of each of them. Based on the said Rules, we require the acquisition of prior approval or reporting from the Group Company to us on predetermined matters.

(2) We develop and operate compliance systems of our Group as a whole, taking compatibility with local laws and regulations. With regard to efforts for ensuring the reliability of financial reports and full observation of security trade control system, the divisions and departments concerned cooperate for the achievement.

(3) Group Companies establish their risk control systems and crisis control systems, respectively.

(4) Group management and administration divisions require Group Companies to periodically report on their execution of business operations and financial conditions, and conduct the administration and control in a planned manner in cooperation with Internal Auditing Divisions, Finance and Accounting Divisions and Audit & Supervisory Board Members.

(5) We establish an appropriate control system for equity-method affiliates in proportion to their equity and the responsibility to assume, and the Group Management and Administration Divisions carry out the administration.

Business Continuity Initiatives

TOYO is implementing security measures to ensure business continuity.
1.Efforts to Ensure the Safety of Employees The disaster prevention plan of our business site (Narashino Head Office) is designed to give top priority to human life, with the aim of preventing the casualty of any one of the guests. We have organized a company-wide comprehensive disaster prevention drill and a fire department in the workplace to carry out drills with an emphasis on the initial response to disasters.
In terms of facilities, we are continually working to strengthen safety by upgrading our own buildings (by adding storage batteries, reinforcing in-house power generation facilities, and deploying sufficient water tanks), strengthening disaster prevention systems, and collaborating with neighboring companies. 2.Expansion of facilities and communication infrastructure It has been confirmed that our company can respond to a seismic intensity of 7 or higher. Based on the hazard map for the Tokyo Metropolitan Area and the Tokyo Bay Northern Earthquake, we are continuously maintaining and updating facilities in light of the frequent occurrence of disasters related to climate change other than earthquakes. In addition to mail and in-house SNS, which are normally used in business, we also deploy analog and satellite telephones that are strong in the event of a disaster.
In order to respond to the situation of disasters outside the works, we operate a safety report and confirmation system (also for smartphones) linked to JMA data.
3.BCP (Business Continuity Plan) We have established Crisis Management Regulations for emergencies and serious crises that threaten our survival. Since establishing the BCP in 2007, we have been continuously reviewing and implementing the BCP.
In the event of a disaster, the Emergency Response Headquarters, headed by the President, is working to issue a BCP within 24 hours. Subsequently, during the business recovery phase, we regularly conduct safety confirmation drills twice a year so that employees who can engage in recovery work can gather within 72 hours of the disaster.
(*Natural disasters such as large earthquakes, wind and floods, fires, terrorism, riots, information system interruptions, disasters, accidents, and infectious diseases such as pandemic influenza, etc.)
Disaster prevention drill In response to the COVID-19 problem in 2020, the Crisis Management Team began monitoring and preparedness activities at an early stage. In response to the government's declaration of a state of emergency, the Crisis Management Headquarters was established, and necessary instructions and responses were given. In responding to this situation, we place top priority on the safety of our employees and their families, including those of our business partners, as well as the local community. We are working to minimize the impact of the new coronavirus problem on our business activities.

Safety Activities Overseas

As globalization progresses, a number of risks are increasing, including terrorism, heinous crimes, turmoil and riots, natural disasters, infectious diseases, and traffic accidents. For companies, safety measures for employees and related personnel overseas are becoming increasingly important. For this purpose, it is necessary to accurately grasp the local situation and take appropriate safety measures.
Toyo puts safety first. Aiming to reduce the number of incidents and accidents involving employees and related parties overseas to zero, we are implementing safety measures to ensure that employees and related parties do not become victims overseas.
At the same time, to achieve this goal, we are focusing on awareness-raising and awareness-raising activities through the provision of information so that employees and related parties themselves are aware that they will protect themselves.

■ Activities to ensure safety overseas
■ Activities to raise awareness of overseas safety among employees and related parties, and to promote overseas safety
■ Drafting and implementation of safety measures and safety surveys in overseas hazardous areas
■ Determination of whether business trips to dangerous areas are allowed or not
■ Grasping the location information of overseas business travelers
■ Emergency Response Overseas
■ Introduction of campaigns at group companies
■ posters, banners, and panels
■ Safety award
■ Emergency Response Overseas
■ Health and medical support overseas
■ Introduction of campaigns at group companies

Copyright © Toyo Engineering Corporation All rights reserved.