INFORMATION SECURITY POLICY

The Knot group (Knot co., ltd./A&P Consulting Co.,Ltd) will prevent incidents and accidents related to information security by appropriately managing and operationg information assets in order to further grow its business, and will act to become a company trusted by customers.

We recognize that the Knot group needs to appropriately handle information assets against threats such as leakage, destruction and falsification of information in the diversifying media and digital society, in addition to managing information in real communications.

In order to fulfill this responsibility, we have established a basic policy on information security and declare that all employees of the Knot group understand this policy and act accordingly.

1. Establishment of management system
   Establish an information security management system to manage all information assets being handled.
2. Development of internal rules on information security
   We develop rules based on the information security policy and clarify the handling of information.
3. Strengthening management system of subcontractors
   We continue to review and strengthen contracts with subcontractors.
4. Compliance with laws and regulations
   We comply with laws and regulations and contractual provisions related to information security.
5. Education and training
   In order to ensure the operation of the ISMS and raise awareness of information security, information security education will be provided on a regular basis.
6. Continuous improvement
   We establish, maintain and continuously improve an ISMS conforming to ISO/IEC 27001 JISQ 27001.

Established: July 1, 2021
Knot co., ltd.
Representative director　Yoshiaki Tanigawa
A&P Consulting Co.,Ltd
Representative director　Naotaka Ozawa