Mitsubishi 2008 Annual Report Download - page 38

Download and view the complete annual report

Please find page 38 of the 2008 Mitsubishi annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 88

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88

3
6mitsubishi motors corporation annual report 2008
Data Security Management
MMC recognizes that the protection of data assets (information as
well as information systems, machines, media, and equipment
used to handle that information) is vital to fulfilling its social
responsibility and earning the trust of stakeholders. Accordingly,
MMC maintains a high level of data security.
In April 2006, MMC established an information security
policy and internal rules that conform to ISO 27001. The com-
pany also provides employee education through regular training
sessions, e-learning and other methods, in an effort to achieve
progressive improvements.
Protection of Personal Information
MMC formulated a policy for the protection of personal infor-
mation in April 2005, and built a management framework to
establish internal rules. The company also appointed a person
responsible for personal information management at each
department under the direction of the Personal Information
Officer. MMC educates staff on the subject through ongoing
e-learning seminars and other programs, and makes efforts to
safeguard personal information in practice.
Security Trade Control
From the viewpoint of maintaining international peace and secu-
rity, MMC profoundly believes in the importance of strict trade
controls to prevent the proliferation of weapons of mass destruc-
tion and the excessive accumulation of conventional weapons.
In order to ensure the appropriate trade control, MMC has
established an Internal Security Trade Control Standard as a man-
agement regulation. In accordance with the standard and in order
to ensure compliance with laws and regulations regarding security
trade control the “Supervisory Committee for Security Trade
Control” was established under the direction of the president, who
acts as Chief Security Trade Control Officer. Legality of export
transactions is guaranteed by a management system centered on
the committee.
Compliance
In order to restore society’s trust in the company and to be
recognized as an enterprise with integrity, MMC believes it is
essential to ensure that all staff members adopt a strong sense
of business ethics.
Development of an Organizational Framework for Promoting
Business Ethics
In June 2004, MMC established the CSR Promotion Office to
ensure thorough compliance and promote a new corporate culture,
while restructuring the compliance framework. MMC has
strengthened the organization to ensure that awareness of compli-
ance spreads to each and every employee. The company appointed
19 compliance officers (as of fiscal year 2007) at each department,
under the direction of the Chief Business Ethics Officer (CBEO),
and appointed department managers as code leaders in each
department under the compliance officers.
Initiatives to Implement Compliance
In fiscal year 2007, in order to shift the focus from revitalization to
the future, MMC worked to encourage voluntary activities
grounded in the workplace as well as individual initiatives, while
holding training sessions and other events with the aim of sharing
information within the group.
Awareness-raising Activities
In fiscal year 2007, MMC held training sessions on compliance led
by instructors from outside the company as part of a training pro-
gram for directors and corporate auditors, with a total of 24 full-
time directors at the executive officer level or above and statutory
auditors taking part.
Meetings are held three times a year in each workplace at
which familiar business ethics problems are examined and solu-
tions are discussed. These meetings provide a good opportunity to
enhance ethical awareness and improve communication through
discussion using actual examples.
In addition to these types of discussions at each workplace,
compliance measures specific to each department were formulated
and implemented under the direction of compliance officers. In
these and other ways, MMC worked to promote compliance with
business ethics.
Establishment and Dissemination of Regulations
MMC is giving priority to its internal reporting system in order to
create a highly transparent workplace environment that is not
conducive to scandals and promotes their early detection as well as
self-correction. MMC has already established the Employee
Counseling Office and external counseling channels through
outside attorneys. In April 2006, in line with the enforcement of
the Whistleblower Protection Act, MMC established operational
criteria related to the internal reporting system, as well as internal
regulations, including those prohibiting the disadvantageous