Risk Management

Basic Approach

We engage in risk management based on the policies outlined in our Risk Management Regulations, which detail risk prevention measures for incidents with the potential to interrupt business operations and appropriate responses in the event a risk incident occurs. The Risk Management Committee, which is chaired by the President, serves as the entity in charge of risk management. This Committee holds regular monthly meetings, or as necessary in cases of an emergency, to monitor the status of risk management structure creation and reports on risk management activities received from business divisions. At least once every three months, the Committee issues reports to the Board of Directors on the status of risk management but issues a report immediately in the event of a serious incident.

Divisions work to ascertain, analyze, and assess latent risks in order to prevent risks before they occur. In accordance with Division Risk Management Parameters, we set a baseline amount calculated by multiplying ordinary profit plan figures by a specific coefficient. Any risks with an estimated impact exceeding the calculated amount are reported to the Risk Management Committee.

Major Risk Management Regulations

  • Risk Management Regulations
  • Information Security Regulations
  • Personal Information Handling Procedures
  • Regulations on Elimination of Anti-social Forces
  • Emergency Response Regulations
  • Compliance Manual
  • Regulations for managing related party transactions
  • Other administrative regulations
  • Risk Management Structure Map

Information Basic Approach Security Management

AS ONE has over 4,200 suppliers, 13,000 dealers, and a customer base of researchers comprised of AXEL members and users of the ocean purchasing system who rely on the timely order processing and shipment of the more than 10 million products we offer. To fulfill our commitment as a hub for research and medical supplies, we take full advantage of various IT systems.

However, technical innovation in information systems is progressing at a remarkable pace, and, in some cases, it is difficult to fully prevent or avoid problems such as failures in core systems or communication networks, as well as tampering, destruction, and leakage of information, etc. In the unlikely event that such a situation occurs, it could have an impact on the Group’s performance.

In order to avoid such situations, the Group has established Information Security Regulations. Under the Information Security Committee, which is chaired by a director, we are implementing information security measures while also making continuous information investments to stay abreast of technical innovations in information systems. To prepare for contingencies, in addition to using data centers that are highly resistant to earthquakes,
we also take steps to distribute servers, create redundant communication routes, and implement multiple layers of protection against cyberattacks, while also placing importance on raising awareness among our employees. We will continue to strengthen our security based on the premise of zero trust (nowhere is safe).

Related Content

AXEL Web Shop