Compliance / Risk management

We are currently studying and implementing the following measures to address serious compliance risks, including risks posed by corruption, cartels, and quality misrepresentation. These measures are intended to prevent compliance violations in Japan and overseas.

The Group is currently enhancing its compliance training programs. Training efforts include reviews of practical case studies, preparation of content and teaching materials tailored to specific employee levels from executives to ordinary employees, discussions, and other activities. Examples of training programs implemented to date are given below.

Since September 2023 the Risk Management Office has undertaken individual compliance interviews with all employees of all facilities in Japan. These are intended to strengthen compliance by deepening employee understanding of compliance through individual communication and striving swiftly to identify any issues that could lead to compliance violations.
We plan to sustain efforts to raise awareness of compliance issues and to ensure thorough understanding of compliance issues among all Group employees.

To enhance oversight of the compliance structure, matters related to the state of its operation are reviewed and submitted annually to the Board of Directors.
Results of the review conducted in FY2021 verified that the Company's compliance structure is operated appropriately.

As stated in the "Mitsubishi Steel Group's Business Conduct Guidelines," our Group is firmly opposed to antisocial forces and has established that we will have no relations with them. Based on this, we have concluded a memorandum with our business partners regarding the exclusion of antisocial forces. In addition, as part of our employee education, we strive to comply with the "Mitsubishi Steel Group's Business Conduct Guidelines," including instructing employees to cut off relations with antisocial forces and to deal firmly with threats and unreasonable demands without yielding.

The Group established the Investment and Credit Committee, led by the Corporate Planning Division, to contribute to management decisions through close examination of business plans and risks from a neutral perspective on issues potentially entailing risks of business losses.
We have also established a Risk Management Committee, led by the Chief Risk Officer (CRO), whose members consist of individuals responsible from the Control & Administration Unit. The purpose of the committee is to manage risks effectively in governance, compliance, and other aspects at domestic and overseas facilities. The committee seeks to identify major risks and draft countermeasures to address these risks.

Risk Management Structure

Information security risks continue to proliferate around the world. To ensure preparedness for such risks, based on the our Corporate Philosophy and the Mitsubishi Steel Group Code of Conduct, the Group has established a Basic Policy for Information Security, as well as associated regulations and associated information security management structures.

These measures focus on establishing an Information Security Committee whose members consist of the individuals responsible from the Company’s sections and the Group companies. The committee is charged with promoting measures to prevent information leaks and unauthorized alterations or destruction of data and with overseeing information security across the entire Group to enable prompt response to major incidents.
We also provide continual training and education on information security for Group employees and perform internal audits to evaluate related aspects such as the state of retention and control of confidential or sensitive information, thereby raising awareness of the significance of information security throughout the organization. Recognizing that high awareness of information security and aggressive security actions by individual employees are key to enhancing the defensive capabilities of the entire organization, officers take the lead in maintaining a high level of awareness of security in everyday business activities by all employees.
In particular, given expanding cyber-attacks in recent years, we’ve enhanced training and education for all employees on targeted email attacks, organizing periodic Computer Security Incident Response Team (CSIRT) drills for potential incidents, and have also taken out cyber risk insurance to ensure preparedness for any eventuality. These are part of efforts to strengthen and enhance information security.

Information security management structure chart (summary)

We have taken measures to ensure that expatriate staff, accompanying families, and business travelers living in environments completely different from the safe and sanitary conditions in Japan can live overseas with peace of mind in case of emergencies.
In collaboration with a specialist company for overseas crisis management, we have a system in place to provide advice and assistance in Japanese 24/7, 365 days a year, in terms of medical care and security (crime, disasters, etc.), no matter where in the world they are.
In addition, whenever there is cautionary information due to climate or protest activities, we share information between the headquarters and overseas bases, and value international communication on a daily basis.

As part of its safety measures, each manufacturing facility in the Group strives to enhance fire prevention measures. Together with regular follow-up on the Groupwide fire risk checks launched two years ago, we are taking action to prevent fires by deploying Groupwide measures based on the lessons of past fires.
We are also promoting fire prevention awareness through continual monitoring, improvements, and periodic patrols to highlight fire risks.

Among its disaster prevention measures, the Company provides regular lifesaving courses for employees at the Head Office. Lifesaving has been a particular focus especially in the past few years, for example by adopting a basic goal of having all employees at the Head Office earn lifesaving qualifications and encouraging those already qualified to participate in repeat training once every three years to keep their qualifications valid. These courses continued even during the COVID-19 pandemic, with appropriate safety measures. As a result, a total of more than 180 persons (including those taking repeat training) completed the course during the six years since 2017, and the Tokyo Fire Department presented us with a letter of thanks reflecting its high regard for our contributions to lifesaving activities in the community.

We will continue these regular courses to improve employees' knowledge and skills regarding lifesaving.

The Mitsubishi Steel Personal Information Protection Policy is available on our website.
https://www.mitsubishisteel.co.jp/english/privacy/index.html