Corporate Governance

Initiatives to Strengthen Corporate Governance

Nihon Kohden recognizes that its most important responsibility to stakeholders is continually fulfilling its corporate social responsibilities through sound business activities.
At the same time, Nihon Kohden believes that corporate governance, in particular, compliance and risk management, is key to fulfilling this responsibility.
To that end, Nihon Kohden strives to strengthen and enhance its corporate governance as a top priority.

Corporate Governance Structure

A corporate governance structure with sound management and efficiency is important. In addition to a framework where directors supervise management and make decisions while operating officers handle business execution, Nihon Kohden appointed outside directors with a high degree of independence to supervise management.

Strengthening Our Risk Management System

Approach to Risk Management

To ensure the sound and smooth operation of business, Nihon Kohden has established a management framework to prevent risks in overall business operations and prescribed methods for dealing with risks when they occur.

Risk Management Framework

The Board of Directors is responsible for establishing basic policies concerning risk management in overall Group business operations, and ascertaining the improvement and promotion status of the Group-wide risk management framework. The Risk Management Supervisory Division is tasked with improving and promoting the overall risk management system of the Nihon Kohden Group.

The risks present in the execution of business activities have been classified into eight types, and Risk Management Divisions and Risk-Related Committees have been assigned to each risk type. Risk Management Divisions provide training and support to operating units with regard to their assigned risk types, and report the system improvement and promotion status to the Board of Directors and the Risk Management Supervisory Division. The Risk-Related Committees report to the Management Council on matters including assessments of management system appropriateness, validity, and effectiveness for related risk types. In addition, risks discovered during audits conducted by the Internal Auditing Department are reported to the president.
Risk Management Framework

Risk Types

The Risk Management Regulations, which set forth the basic policies for risk management, classify risks into eight types: Financial and Accounting Risks, Compliance Risks, Quality Control Risks, Environmental Risks, Information Disclosure Risks, Disaster and Accident Risks, System Risks, and Strategic Risks.
Risk Description
Financial and Accounting Risks Risk of losses due to change in value of assets held or inappropriate accounting practices
Compliance Risks Risk of losses due to failure to comply with laws and regulations, etc.
Quality Control Risks Risk of losses due to problems related to safety or reliability of our products or services
Enviromental Risks Risk of losses due to occurrence of environmental pollution, etc., caused by insufficiency in reduction of environmental impact or prevention of environmental pollution
Information Disclosure Risks Risk of losses due to inappropriate disclosure of information
Disaster and Accident Risks Risk of losses due to hindrance to business operations caused by disaster or accident
System Risks Risk of losses due to failure, malfunction, unauthorized use in networks and systems for internal IT infrastructure or products and services.
Strategic Risks Risk of losses due to misleading business strategies

Self-Assessment of Risk Management

Nihon Kohden’s offices, subsidiaries, and the departments in the head office conduct self-assessment of risk management using divisional inspection sheets. The Risk Management Supervisory Division verifies the progress of risk management system implementation and future responses, and reports the results of self-assessments to the Board of Directors. In FY2018, we reported the implementation of training about the Anti-Corruption Policy at each workplace and the progress of enhancing information security.
In addition, Nihon Kohden is conducting education in relation to risk management for executives and employees to ensure a broad awareness of risk management.

Response in the Event of a Risk

Regulations have been established for each risk type.
Regulations related to each risk type governing the response to be taken when a risk occurs have also been set forth.

Disaster Risk Management

Basic Approach

Medical devices on which people’s lives depend need to be supplied continually and smoothly in the event of a major disaster. As a medical device manufacturer, Nihon Kohden takes measures to ensure the safety of employees and their families in a disaster and respond to disaster risks to ensure the unbroken support of products and services.

Business Continuity Plan (BCP)

In March 2015, Nihon Kohden devised a business continuity plan to ensure that even if the Company suffers damages and losses due to a major earthquake, the provision of products and services can continue or be quickly restored. The BCP sets forth organizational charts, initial response manuals in the event of a disaster, subsequent restoration plans following an initial response, operational procedures, and disaster mitigation measures to be taken under normal conditions for each business site.

Business Continuity Management (BCM)

To ensure that the business continuity plan will function effectively during a disaster, Nihon Kohden sets the BCP Operating Regulations and established the BCP Operation and Management Committee tasked with operating and managing the BCP. To ensure the effectiveness of the BCP during a disaster, the Committee conducts periodic Company-wide education and training. In addition, the BCP is reviewed periodically to make ongoing improvements.

Nihon Kohden’s Basic BCP Policy

  1. Protect employment while placing a priority on the lives and health of employees and their families
  2. Fulfill our responsibility to supply products and deliver services to customers, and endeavor to maintain a healthcare structure
  3. Support customers and contribute to local communities
  4. Maintain close coordination with affiliate companies and minimize the impact on the management of both parties

Safety Confirmation System

Nihon Kohden rolled out its safety confirmation system in 2009. The safety confirmation system enables us to quickly ascertain the safety of employees and their families after a disaster as well as ascertain the extent of the damage and implement measures to restart business operations. During a disaster, an email is sent to all employees in the affected region. Responses to this email are monitored on a dedicated web page. To ensure access to a communication method, Nihon Kohden deploys satellite phones that are not bound to the normal telecommunications networks in each of its principal business locations in Japan.

Disaster Preparedness Kits

Disaster Preparedness Kits
Nihon Kohden provides a disaster preparedness kit to each of its employees in Japan. This is a portable bag containing essential supplies for an earthquake, typhoon or other natural disaster.
Each Nihon Kohden site also maintains food and water rations in preparation for emergencies.

Information System Risk Management

Basic Policy

Information-related technologies and environments are continually changing. New ways of using information along with new risks emerge on a daily basis. While we promote the utilization of highly convenient information technology to improve business efficiency, we also undertake various measures in response to changing conditions to safeguard confidential company information and personal information from leaks.

Initiatives to Ensure Information Security

To protect the personal information and important confidential information of all stakeholders including customers, patients, business partners, and employees, we have established regulations concerning personal information and IT utilization.
An IT Safety Measures Committee prescribes the rule concerning IT utilization.
We have also deployed members of the IT support personnel in operating divisions and subsidiaries to disseminate rules to employees, as well as to provide guidance and support.

Employee Education

Nihon Kohden conducts periodic training for employees to disseminate information on rules concerning IT utilization and ensure that compliance with the Act on the Protection of Personal Information has taken root and that internal rules are widely known and taken root.

Obtaining Third-party Certification

To further enhance information security, Nihon Kohden has also obtained outside certification.

We  obtained PrivacyMark certification from the Japan Institute for the Promotion of Digital Economy and Community (JIPDEC) in July 2005.
Information Security Management System (ISMS) JIS Q 27001 (ISO / IEC 27001) certification IS 617365 / JIS Q 27001
We also obtained Information Security Management System (ISMS) JIS Q 27001 (ISO / IEC 27001) certification in January 2015; the scope includes management and operation of remote service facilities for Nihon Kohden Group system products.

Registration item Registered content
Certificate number IS 617365
Scope of registration The operation and management associated  with remote maintenance service
Location Nishiochiai office
Tokorozawa office
AS Kansai Division
Original resistration date January 19, 2015
Last renewal date February 18, 2020