Information Security Basic Policy

Version 2.0

Date Established: January 19, 2024 / Date Revised: October 13, 2025

Linoedge Co., Ltd. Shogo Harada, President and CEO

Purpose

Linoedge Co., Ltd. (hereinafter referred to as “the Company”) is committed to earning society’s trust by protecting the information assets entrusted to us by our customers from threats such as accidents, disasters, and crimes. The Company shall ensure the confidentiality, integrity, and availability of information assets and dedicate the entire company to securing and improving information security to support business continuity.

1. Management’s Responsibility

The Company shall promote information security on an organizational and continuous basis under the leadership of management, ensuring the necessary management resources are secured. The President and CEO, as the ultimate person responsible for information security, shall regularly evaluate and improve the execution status of this policy.

2. Development of Internal Structure

The Company shall establish an information security management system and appoint a Chief Information Security Officer (CISO). Important matters shall be deliberated by the Information Security Committee, which will continuously review risk analysis and countermeasures.

3. Employee Commitment

All employees shall acquire knowledge and skills related to information security and act with a high level of awareness in their daily work. The Company shall conduct regular education and training to ensure this recognition is established and improved.

4. Compliance with Laws and Contractual Requirements

The Company shall comply with all laws, norms, and contractual obligations related to information security and personal information protection to meet the expectations of our customers and society.

5. Response to Violations and Incidents

In the event of an information security violation or incident, the Company shall promptly report and respond, striving for root cause analysis and prevention of recurrence. We shall report to and cooperate with relevant authorities as necessary.

6. Continuous Improvement

The Company shall regularly conduct information security risk assessments and continuously improve its controls and procedures. This activity will be conducted with reference to the controls of ISO/IEC 27001:2022.

7. Revision and Public Disclosure

This policy shall be reviewed in response to amendments to laws, social conditions, and technological trends. The latest version shall be published on the Company’s website upon revision.

Revision History