Corporate Governance and Internal Control

Similar documents
(b) Fiscal 2016 Initiative Results and Fiscal 2017 Plans

SAVANNAH LAKES VILLAGE PROPERTY OWNERS ASSOCIATION, INC. JOB DESCRIPTION

Business Continuity. Policies. Promotion Framework

Government Resolution No of February 15, Resolution: Advancing National Regulation and Governmental Leadership in Cyber Security

Virginia State University Policies Manual. Title: Information Security Program Policy: 6110

Code of Ethics Certification 2018 CHECKLIST

Fiscal 2015 Activities Review and Plan for Fiscal 2016

A Framework for Managing Crime and Fraud

Subject: University Information Technology Resource Security Policy: OUTDATED

The University of British Columbia Board of Governors

B. To ensure compliance with federal and state laws, rules, and regulations, including, but not limited to:

UL and Business Continuity

China Code of Ethics Certification 2018 CHECKLIST

Management Frameworks

Action Plan Developed by. Institute of Certified Public Accountants of Uganda BACKGROUND NOTE ON ACTION PLANS

Introduction to Business continuity Planning

MANUAL OF UNIVERSITY POLICIES PROCEDURES AND GUIDELINES. Applies to: faculty staff students student employees visitors contractors

CHARTER OUR MISSION OUR OBJECTIVES OUR GUIDING PRINCIPLES

Texas Reliability Entity, Inc. Strategic Plan for 2017 TEXAS RE STRATEGIC PLAN FOR 2017 PAGE 1 OF 13

Jelena Roljevic Assistant Vice President, Business Intelligence Ronald Layne Data Governance and Data Quality Manager

Reviewed by ADM(RS) in accordance with the Access to Information Act. Information UNCLASSIFIED.

Business Continuity Management Standards A Side-by-Side Comparison

A Global Look at IT Audit Best Practices

MassMutual Business Continuity Disclosure Statement

Information Security and Cyber Security

Forward. 1. Purpose. Page 1 of 5 Revision Date

Business Continuity Plan (BCP) in Case of an Emergency

Cell and PDAs Policy

Standard for Security of Information Technology Resources

Recovery and Reconstruction. towards disaster resilient communities - from lessons learnt in Japan - 24 August 2004.

ISO / IEC 27001:2005. A brief introduction. Dimitris Petropoulos Managing Director ENCODE Middle East September 2006

General Information Technology Controls Follow-up Review

Public Safety Canada. Audit of the Business Continuity Planning Program

New York Department of Financial Services Cybersecurity Regulation Compliance and Certification Deadlines

STAFF REPORT. January 26, Audit Committee. Information Security Framework. Purpose:

STRATEGIC PLAN. USF Emergency Management

EXAM PREPARATION GUIDE

Global Statement of Business Continuity

Facilities Management and Business Continuity. 10 May 2017

Office of the City Auditor 2014 Third Quarter Activity Report November 25, 2014

UNC Campus Security Initiatives Update. Business Affairs Committee May 9, 2017

BENEFITS of MEMBERSHIP FOR YOUR INSTITUTION

October 2016 Issue 07/16

Audit and Compliance Committee - Agenda

EMERGENCY MANAGEMENT

Modern slavery and human trafficking statement 2017

Security and Privacy Governance Program Guidelines

NYDFS Cybersecurity Regulations

Application Guideline for BOP/Volume Zone Business Support Coordinator UZBEKISTAN in FY 2015

Activities of the Second Quarter 2018

Information Security Incident Response Plan

Ferrous Metal Transfer Privacy Policy

IT SECURITY OFFICER. Department: Information Technology. Pay Range: Professional 18

PROCEDURE POLICY DEFINITIONS AD DATA GOVERNANCE PROCEDURE. Administration (AD) APPROVED: President and CEO

Information technology security and system integrity policy.

BACKGROUND NOTE ON ACTION PLANS

Client Services Procedure Manual

Investec Specialist Investments (RF) Limited. Complaints policy January 2017

Action Plan developed by Ordre des Comptables Professionnels Agréés d Haïti (OCPAH) BACKGROUND NOTE ON ACTION PLANS

MNsure Privacy Program Strategic Plan FY

WEB ACCESSIBILITY POLICY

Policies and Procedures Date: February 28, 2012

Privacy Policy Manhattan Neighborhood Network Policies 2017

Credit Card Data Compromise: Incident Response Plan

CASA External Peer Review Program Guidelines. Table of Contents

COUNTY AUDIT HILLSBOROUGH COUNTY, FLORIDA CONSULTANT COMPETITIVE NEGOTIATION ACT (CCNA) PROCUREMENT PROCESS AUDIT REPORT # 251

Google Cloud & the General Data Protection Regulation (GDPR)

INFORMATION TECHNOLOGY ( IT ) GOVERNANCE FRAMEWORK

2018 CANADIAN ELECTRICAL CODE UPDATE TRAINING PROVIDER PROGRAM Guidelines

RSB Standard for participating operators

Val-EdTM. Valiant Technologies Education & Training Services. Workshop for CISM aspirants. All Trademarks and Copyrights recognized.

It applies to personal information for individuals that are external to us such as donors, clients and suppliers (you, your).

ITU Asia-Pacific Centres of Excellence Training on Conformity and Interoperability. Session 2: Conformity Assessment Principles

ORA HIPAA Security. All Affiliate Research Policy Subject: HIPAA Security File Under: For Researchers

European Diplomatic Programme. The EU Global Strategy: from Vision to Action

Policy Title; Business Continuity Management Policy. Date Published/Reviewed; February 2018

European Diplomatic Programme. The EU Global Strategy: from Vision to Action

Information Security Incident Response Plan

Resolution adopted by the General Assembly. [on the report of the Fifth Committee (A/61/592/Add.4)]

DATA CENTER OPERATIONS CALIFORNIA STATE UNIVERSITY, DOMINGUEZ HILLS. Audit Report June 15, 2012

NY DFS Cybersecurity Regulations August 8, 2017

Number: USF System Emergency Management Responsible Office: Administrative Services

Hong Kong Accountability Benchmarking Micro-Study. Nymity Accountability Workshop 10 June 2015, Office of the PCPD, Hong Kong

Resolution adopted by the General Assembly on 14 December [without reference to a Main Committee (A/61/L.44 and Add.1)]

April Appendix 3. IA System Security. Sida 1 (8)

POSITION DESCRIPTION

FIRESOFT CONSULTING Privacy Policy

KENYA SCHOOL OF GOVERNMENT EMPLOYMENT OPORTUNITY (EXTERNAL ADVERTISEMENT)

Data Protection and GDPR

Academic Program Review at Illinois State University PROGRAM REVIEW OVERVIEW

CONTINUING PROFESSIONAL DEVELOPMENT REGULATIONS

Rules for LNE Certification of Management Systems

Wesley House data protection statement and privacy notice (short-course delegates)

DEMO OF ISO/IEC 17025:2017 AWARENESS AND AUDITOR TRAINING PPT PRESENTATION KIT

The Role of the American National Standards Institute (ANSI) Irwin Silverstein, Ph.D. IPEA

Canada Life Cyber Security Statement 2018

IJESRT. (I2OR), Publication Impact Factor: (ISRA), Impact Factor: 2.114

4.2 Electronic Mail Policy

PROCEDURE COMPREHENSIVE HEALTH SERVICES, INC

Cardiff University Security & Portering Services (SECTY) CCTV Code of Practice

Transcription:

01 20 Lawson 93 Lawson strives to enhance Corporate Governance by improving the soundness and transparency of management, through ensuring compliance and affirmative disclosure. Overall view of Lawson s Internal Control System Internal control audits Regular meetings Board of Corporate Auditors Reports on important issues Corporate Auditors Office Mutual understanding / information exchange Compliance and Risk Management Committee Ordinary precautions Emergency Risk Management Committee Emergency system Affiliated companies Affiliated company compliance officer meeting Quality and Sanitation Subcommittee Office Theft Prevention Subcommittee BCP and Disaster Prevention Subcommittee Information Security Subcommittee Environment/CSR Subcommittee Internal Audit Office Internal controls monitoring Close communications Basic management policy Board of Directors President and CEO Control Division Director Control General Managers CCO Monitoring Region Director Monitoring Branch Director Control Monitoring Managers Managers Managers Control Monitoring Person in Charge Person in Charge Person in Charge Person in Charge For more information on the Corporate Governance Decisions concerning our Basic Policy Governing Maintenance of Internal Control Systems Franchisee Support Office Compliance & Risk Management Office Compliance Officers Guidance/support Franchise stores Japanese only Corporate Governance

01 20 Lawson Board of Directors & Executive Officer System The Board of Directors intentionally has few members, 7 members of the board including 3 outside members of the board, to facilitate swift and right management decisions. This system enables us to make fair decisions on important matters about company affairs including the formulation of business strategy. In addition, the executive officer system enables us to accelerate business execution through the delegation of authority. Audit System Lawson s Board of Corporate Auditors has 4 members, including 3 outside auditors. The Board of Corporate Auditors monitors and verifies the execution of duties by directors by attending Board of Directors and other important meetings, providing opinions, and reviewing important documents. Internal Control System Lawson faces wide-ranging risks as a company involved in many different business areas centered on convenience stores, with stores providing diverse products and services in every prefecture of Japan. For ensuring sound and sustained corporate development, we review our basic policy each year in accordance with changes in management environment and other situations to maintain an effective and rational internal control system. The Fiscal 2012 Basic Policy for Maintaining the Internal Control System In the interest of maintaining comprehensive and unified information security governance systems in FY 2012, we have added to our basic policy requirements for closer coordination between our Risk Management Department and IT Department, improved effectiveness of our Disaster Control Manual and BCP (business continuation plans), and better communication between Lawson and our main subsidiaries, all changes approved at the February 2012 Board of Directors meeting. 94 Click here for more information Basic Policy Governing Maintenance of Internal Control System Japanese only

01 20 Lawson We promote a better company structure to raise awareness of compliance. Company Structures for Raising Awareness of Compliance Lawson has appointed a Chief Compliance Officer (CCO), who has overall responsibility for the promotion of compliance and management of risks. The CCO leads the Compliance & Risk Management Office, which has its own full-time staff. Compliance officers are also appointed in each corporate headquarters division and at the region offices in Japan. Every month the Compliance & Risk Management Committee meeting is convened by the CCO, acting as Chairman, and once a quarter we hold the Affiliated Company s Compliance Officer Meeting. Ascertaining compliance issues and risks in the Lawson Group allows us to prevent the occurrence of corporate misconduct. For the maintenance and enhancement of the compliance system We have developed compliance-related rules and conducts regular compliance training, including e-learning and group training by job type, to ensure that we fulfill our corporate responsibility to comply with laws and regulations and respect social standards and morals. Based on the Corporate Conduct Charter and the Code of Ethics, we have periodically revised the Lawson Group C&R Handbook, which summarizes these standards of conduct so that we can maintain and enhance employee awareness of compliance and risk management through work. 95 Findings of the 8th (fiscal 2011) compliance questionnaire survey and measures to the results To figure out the penetrance of the compliance system, we perform compliance surveys covering all company personnel once a year. In order to quickly devise policy based on questionnaire results, in FY 2011 we changed the questionnaire period from the second half to the first half of the year. Results were lower than the previous year, and issues of particular note include a drop in initiative concerning the indicating and correcting of problems, work environments not conducive to asking for help, and increased anxiety after having experienced the earthquake. Based on these results, in FY 2012 we will be putting together and improving a Group consultation office, exchanging ideas and identifying problems with stores, and conducting new disaster control drills (every March 11th), among other initiatives. We will also be continuing to review our BCP (business continuity plan) and disaster control measures based on our response to the earthquake while conducting compliance and risk management training and promoting further improved compliance and risk management.

01 20 Lawson 96 In order to prevent the occurrence of misconduct and other problematic incidents, we will improve the risk management system and further share risk information. Enhancing Structure to Address New Risks Lawson focuses on three major risk areas from the corporate ethics perspective: product quality and hygiene management (see P.73-78 regarding quality management), information security, and disaster response. We have a system in place for the swift resolution of problems in the event of an emergency, and the Compliance and Risk Management Committee and five subcommittees convene in normal times to prevent the emergence of risks. In the event of a serious risk emerging, we set up an emergency risk management committee to contain the risk and minimize damage. We have also prepared a BCP (Business Continuity Plan) to minimize business interruptions and other damages that we are likely to suffer in the event of a large-scale natural disaster or pandemic. With the aim of revising our risk management system incorporating lessons learned from our response to the Great East Japan earthquake, in FY 2012 we are focusing on putting together a BCM (business continuity management) system, improving disaster control awareness through disaster control training three times a year, continuing our risk management workshops, and getting more people to attend AED workshops. BCP guidelines AED workshop As of August 4, 2012 Lectures for headquarters employees: 42 sessions, 1,215 participants Lectures for owners: 20 sessions, 4 participants (started in October, 2011)

01 20 Lawson 97 Maintaining Lifeline Functions during Major Disasters In the case of large-scale disasters, the Lawson Group strives to ensure the ongoing operation of stores and the rapid restoration of service. Improving Information Security We have established the Lawson Group Personal Information Protection Policy that is also reflected in store manuals to ensure that it is understood and put into practice. To raise awareness, we use internal newsletters and other communication tools to describe common errors and complaints at stores and ways to resolve them. We are conducting regular checks of headquarters employees to gauge observance of Lawson Office Security Rules. Since FY 2011, we have been promoting the acquisition of Information Privacy Professional certification and improving the level of personal information management within each department. Crime Prevention Measures in Stores Lawson conducts training that encourages staff to put their own safety first and, for example, greet customers in a cheery, energetic tone with a constant focus on preventing theft. In addition to carrying out the efforts to the right, headquarters is encouraging local police forces and the Japanese Franchise Association to help improve antitheft Mock robbery training measures for the convenience store industry as a whole. For more information, click here. Featured Page(p.5) Details of the crime prevention measures 1. Promotion of the installation of security cameras Antitheft cameras installed outside all stores enhance our ability to prevent crime and help arrest criminals should a crime occur. 2. Improvement of security camera functions By replacing all the security camera systems with digital systems, the number of cameras will be increased, the image quality will be enhanced, the video recording capability will be improved, and replacement of video tapes will be unnecessary. 3. Improvement of the environment for crew education Alerts on crime prevention to POS registers and store computers are being distributed and tools and manuals for use in crew education, including the self checklist for crime prevention, are being developed. 4. Strengthening of crime prevention rounds We will provide the guidance on making the rounds of the store specifically for crime prevention in order to enhance the awareness of franchise stores.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback