Shizen Energy Inc. and each of its group companies (collectively, “Shizen Energy Group”) (hereinafter“we”, “our”, or “us” mean Shizen Energy Group), with “We take action for the blue planet” as our PURPOSE (Why we do what we do), are aiming to co-create a 100% renewable-powered planet together with our global
partners having the same goal.

In continuing our business, we believe that it is essential, as our social responsibility, to protect the security of our customers’ personal information, information received from other companies/partners and information in our possession (hereinafter referred to as “Information Assets”), and ensure the security of our customers,related companies and business partners.

Together with the “Personal Information Protection Policy” and the “Personal Information ProtectionRegulations” that we have separately formulated, we hereby prescribe our “Basic Policy on Information Security” (this “Basic Policy”) and declare our basic efforts related to information security, and our executive
officers and employees will promote continuous information security measures.

• 1.We place utmost priority on preventing any loss, theft, unauthorized use, falsification, divulgence orother incidents of Information Assets, implement our social responsibility as a company, and aim to realize continuous customer services.
• 2.We implement appropriate information security measures for Information Assets in our possession, according to their importance, while making maximum use of such Information Assets.
• 3.In order to establish an information security management system, set information security objectives, and to continuously maintain the information security management system for achieving the information security objectives, we establish an organization/framework, and periodically review and continuously improve the organization/framework.
• 4.We clarify the method of managing Information Assets to be protected, analyze Information Assets from the perspective of threats and vulnerabilities, and assess the risks against Information Assets. We preferentially take measures against risks that may affect the most important information which were revealed from the results of risk assessment.
• 5.We clarify the method of managing Information Assets to be protected, analyze Information Assets from the perspective of threats and vulnerabilities, and assess the risks against Information Assets. We
  preferentially take measures against risks that may affect the most important information which were revealed from the results of risk assessment.
• 6. We clarify the method of managing Information Assets to be protected, analyze Information Assets from the perspective of threats and vulnerabilities, and assess the risks against Information Assets. We preferentially take measures against risks that may affect the most important information which were revealed from the results of risk assessment.

Date of Establishment: July 1, 2022
Date of Revise: May 1, 2024
Shizen Energy Inc.
Representative Directors, Ken Isono, Kanji Kawado, Masaya Hasegawa