PrivacyPolicy

PrivacyPolicy

ISMS Accreditation Center (ISMS-AC) is a public interest corporation established as an accreditation body for the purpose to accredit management system certification bodies and promote mutual recognition among accreditation bodies at the international level.
In order to handle all the personal information appropriately that is acquired in our accreditation and the related activities carried out to contribute to society and fulfil our mission, we have established this Privacy Policy as a code of conduct and have our officers and employees observe it in a thorough manner.

  1. In handling personal information in all of our activities, we implement measures to protect personal information and comply with the Act on the Protection of Personal Information, the Act on the Use of Numbers to Identify Specific Individuals in Administrative Procedures and other laws and regulations governing the protection of privacy and personal information as well as all applicable governmental and ministerial ordinances and guidelines.
  2. We clearly define the purpose of use of personal information, and acquire and use the personal information appropriately within the extent necessary for business execution. We use the acquired personal information within the defined scope of use and take measures to ensure not to use it for any other purposes.
  3. In case of outsourcing all or part of properly acquired personal information, we select entities that meet the adequate protection criteria, and take appropriate measures to supervise them under the contracts.
  4. We will not disclose or provide personal information to third parties, except with the prior consent of the individual concerned or as permitted by law.
  5. We may jointly use acquired personal information with our related organization, JIPDEC. In such case, we notify the individual before we share them.
  6. We take reasonable security and corrective measures against risks such as unauthorized access to, loss, damage, falsification, or leakage of personal information.
  7. We will respond without delay to requests from relevant individuals to disclose, correct, delete, or cease to use personal information, as well as to complaints and consultations.
  8. We will endeavor to improve our efforts to handle personal information on an ongoing basis.