Information Security Basic Policy

YAMAKA SHOTEN LTD. (hereinafter referred to as "the Company") will work on information security across the entire company based on the following policies in order to protect the Company's information assets from threats such as accidents, disasters, and crimes, and to meet the trust of customers and society.

1. Responsibility of Management The Company will strive to improve and enhance information security organizationally and continuously under the leadership of management.
2. Establishment of Internal System The Company will establish an organization to maintain and improve information security and establish information security measures as formal internal rules.
3. Employees' Efforts Employees of the Company will acquire the necessary knowledge and skills for information security and make their efforts toward information security solid.
4. Compliance with Legal and Contractual Requirements The Company will comply with laws, regulations, standards, and contractual obligations related to information security, and meet customers' expectations.
5. Response to Violations and Incidents In the event of any violation of laws and contracts or incidents related to information security, the Company will take appropriate action and strive to prevent recurrence.

Established on: April 1, 2023

YAMAKA SHOTEN LTD.

Daiki Kato, President and Representative Director