Information Security Policy

Watashi Online Academy Limited (hereinafter referred to as "the Company") provides Japanese language lesson services via the internet and bears the responsibility of meeting the trust and expectations of its users.

The Company is committed to protecting information handled in its operations, including users' personal data, from threats such as accidents, disasters, and crimes. Based on the following principles, we strive to maintain and continuously improve information security across the organization.

1. Leadership and Responsibility of Management

The Company’s management takes the initiative in promoting information security and leads company-wide efforts for its implementation and continuous improvement.

2. Establishment of an Effective Organizational Framework

We maintain a governance structure centered around the Risk Management Committee, ensuring effective control and transparent management. Relevant policies and procedures are reviewed in response to changes in technology and business environments.

3. Employee Awareness and Responsibility

All employees understand the fundamental principles of information security and act with high ethical standards and professionalism. Through regular education and training, they acquire the ability to respond to evolving threats.

4. Compliance with Legal and Contractual Requirements

The Company complies with laws, regulations, standards, and contractual obligations related to information security, and strives to meet the expectations of customers and society.

5. Response to Violations and Incidents

In the event of legal violations, contractual breaches, or incidents related to information security, the Company ensures prompt response and minimizes impact. We conduct root cause analysis and implement effective measures to prevent recurrence.

6. Social Responsibility as an Online Service Provider

As a provider of online services, the Company conducts risk assessments that consider the unique risks of cloud services and builds systems that allow users to safely utilize our services while appropriately protecting entrusted information.

7. Continuous Improvement and Open Attitude

Information security is an ongoing effort. The Company remains flexible and responsive to changes in threats and business environments, continuously reviewing policies and measures. We maintain an open attitude toward feedback from both internal and external sources.

Date of Establishment: September 1, 2025