Corporate Obligations and ResponsibilitiesRisk Management

With Internet environments changing at dizzying speeds, there are considerable shifts in both opportunities and risks. In order to promptly handle such risks, Yahoo Japan Corporation (“Yahoo! JAPAN”) has adopted an approach to risk management that prioritizes identifying and eliminating risk factors but also includes detailed contingency plans in case risks actually materialize. Risk-related information is disclosed together with our financial and business results on a quarterly basis.
The Yahoo Japan Group has established a risk management system to identify and prevent probable risks in addition to creating Regulations on Risk Management to tackle risks that do arise. Moreover, thanks to enterprise risk management (ERM) measures based on ISO 31000/JIS Q 31000 standards, implemented by a specialized department in charge of risk management, risk-related information from each department can be collected and deployed as a proactive risk management tool.
The heads of each division identify, analyze, and evaluate risks based on the Risk Management Policy agreed upon by top management. Risk control limits residual risk to an acceptable range, and risk acceptance (ownership) is practiced only if there is a rational reason to do so. Through this ERM process, the Yahoo Japan Group strives for business optimization and smooth operations, and to ensure the continuation of both.

Yahoo! JAPAN ERM Process Diagram

Incident Reporting System

When an incident or a situation occurs in relation to the various businesses of Yahoo! JAPAN, a report is filed in our incident reporting system within one hour of discovering such situation or incident. The details are shared immediately with all relevant departments and then the incidents are classified into three severity levels to be recorded in the database. For each incident, the specific circumstances, responses, and causes are recorded and analyzed and managed with the goal of preventing recurrence of a similar incident in the future.

Disaster Response System (BCP)

We provide services that utilize multiple datacenters and backbones so that we will not be simultaneously affected by natural disasters that ensue over a wide area. Such system is implemented with the goal of providing the necessary news and disaster information to our users without interruption, even in times of emergency, such as an earthquake centered on Tokyo or a Nankai Trough megathrust quake.
In order for the Kitakyushu Editing Office, which was established in a geographically distant area from our Kioicho Office in Tokyo, to continue updating services alone, including the Yahoo! JAPAN top page and Yahoo! News, we conduct regular and thorough disaster preparations and simulations.
Moving forward, we will conduct periodic revisions to our business continuity plan (BCP) for major disasters. Specifically, we are implementing measures which include redundancy for the services that make up our social information infrastructure and creating systems capable of delivering appropriate information to our users.