Information Security Management Basic Policy

METRO CORPORATION (hereinafter referred to as “the Company”) will implement company-wide information security measures based on the following policy to protect the information assets held by the Company and those entrusted to us by our customers from threats such as accidents, disasters, and crime, thereby fulfilling the trust placed in us by our customers and society.

1. Management Responsibility

The Company will strive to improve and enhance information security in an organized and continuous manner under management leadership.

2. Establishment of Internal Structure

The Company shall establish information security measures as formal internal regulations and shall establish an Information Security Committee to promote their implementation.

3. Employee Commitment

The Company's employees shall acquire the knowledge and skills necessary for information security, ensure their commitment to information security, and strive to protect and manage information assets as assets critical to the Company's operations.

4. Compliance with Legal and Contractual Requirements

We will comply with all laws, regulations, standards, and contractual obligations related to information security, and meet our customers' expectations.

5. Response to Violations and Incidents

We will comply with this Information Security Policy and related regulations. In the event of any violation of laws or contracts related to information security, or any incident, we will respond promptly and appropriately, and strive to prevent recurrence.

Enacted: June 12, 2025
METRO CORPORATION
CEO: Tsunenari Yada