Group Shared Policy on Information Security

Ajinomoto Group
Revised on: April 1, 2026

To appropriately manage the information assets we hold and the IT and digital infrastructure that supports them, the Ajinomoto Group establishes this Group Shared Policy on Information Security and continues to carry out the following activities across the Group to improve information security.

  1. We comply with laws and regulations applicable in each country and region.

  2. Through internal rules related to information security, we clarify roles, responsibilities, and authorities, and operate in accordance with those rules.

  3. Based on risk assessments, we implement controls to reduce information security risks to an acceptable level, taking into account our business and applicable laws and regulations. To ensure confidentiality, integrity, and availability of information, we continuously make organizational and technical improvements and strive to protect information assets.

  4. We provide role-appropriate education and training related to information security for officers and employees so that each individual can act responsibly.

  5. We monitor information security threats and implement appropriate preventive controls to support stable business continuity. If an incident occurs, we recover promptly and strive to prevent recurrence.

  6. We share and disclose information regarding information security incidents and risks within an appropriate scope and by appropriate means, taking into account laws and regulations and societal expectations.

  7. We endeavor to clearly specify necessary information security requirements for external parties (such as suppliers and contractors) and request appropriate management.

  8. We regularly verify compliance with internal rules related to information security through internal audits and, as necessary, take corrective actions to achieve continuous improvement.