Mazda 2012 Annual Report Download - page 28

Download and view the complete annual report

Please find page 28 of the 2012 Mazda annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 60

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60

Risk Management
In ordinary circumstances, Mazda follows the Basic Policy on Risk
Management, Risk Management Regulations, and other related
internal regulations, and individual business risks are managed by
the department in charge of that business area while company-
wide risks are appropriately handled by departments that carry
out business on a companywide basis.
During emergencies, such as situations that bring forth serious
managerial consequences or natural disasters, Mazda takes appro-
priate measures in reference with its internal regulations,
including the establishment of an emergency response taskforce
when necessary.
Moreover, risk management is further enhanced through the
establishment of key agendas in the Risk Compliance Committee
and confirmation/evaluation of the risk management status in
each department.
In the event of incidents that fall outside the scope of existing risk
management organizations and require a coordinated interdepartmental
response, the director in charge of risk management will consult with the
president, establish an emergency response taskforce, and appoint a
general manager of this taskforce.
Information Security
Personal information and other important information are appro-
priately managed and protected based on the established informa-
tion management policies and internal regulations, so as to ensure
information security. To raise employeesawareness about infor-
mation security, Mazda requires its employees to undergo training
on the management of confidential information, protection of
personal information, and IT security.
For companies in the Mazda Group, Mazda provides guidelines
and educational tools regarding information security, realizing a
group-wide effort to ensure information security.
The IT security policy based on the BS 7799 (ISO 17799)* frame-
work has been established as IT security management rules, which
determine which security control mechanisms should be incorpo-
rated into the IT system. The implementation of such mechanisms
is confirmed on a regular or random basis. For particularly impor-
tant information, security measures include managing access
according individual IDs and keeping access logs.
* Standards on information security management established by the British Standards
Institution (BSI).
Compliance
At Mazda the concept of compliance applies not only to laws and
regulations, but also includes adherence to other rules such as
internal guidelines and societal norms and expectations. Business
operations are conducted in accordance with the Mazda Corporate
Ethics Code of Conduct to ensure fair and honest practice. This
also applies overseas; Mazda not only complies with international
regulations and the laws of each country and region, but also
respects local history, culture, and customs.
Mazda Global Hotline
In 1999, Mazda established the Ethics Advisory Office to handle
employee inquiries about compliance and conduct investigations
on ethical matters. In September 2007, the scope of the office was
expanded to include domestic and overseas Mazda Group compa-
nies, and it was renamed the Mazda Global Hotline as a contact
point for receiving information. To ensure that all employees are
aware of this hotline, Mazda has distributed the compliance card
with the contact information to all employees at Mazda Motor
Corporation, and ensures awareness of this hotline at every oppor-
tunity through compliance education. Mazda has also introduced
the hotline to Mazda Group companies in Japan and overseas via
the Company Intranet.
Risk Management Structure
in Normal Times
Emergency Risk
Management Structure
Director in charge of Risk Management
Risk Compliance Committee
Emergency response taskforce
Representative Director and President Representative Director and President
Departments
within Mazda
Mazda Group
Companies
Departments
within Mazda
Mazda Group
Companies
Compliance Promotion System
Risk Compliance Committee
Office of General & Legal Affairs
Global Hotline
Representative Director and President and CEO
Departments within Mazda
(Executive Officers/Division General Managers/
Department General Managers = Persons in charge of compliance)
Mazda Group
Companies
<Review board>
Liaison
Reporting Deliberation of
handling
Recommendation/
advice
Mazda Global Hotline
Notification
Report
In principle, real
name is used
Real name/
pseudonym
Report
Response
(where
notification is
possible)
Response
(where
notification is
possible)
Instruction
Whistleblower
Mazda Global
Hotline In-house contact point
Sector targeted for investigation
Auditor
Office of General & Legal Affairs
Mazda Global
Hotline Outside contact point
(attorney’s office)
Representative Director
and President
Other senior management
Report
Mazda Annual Report 2012
26