| Revenue base |
2 |
8 |
- Difficulty in securing profits due to the inability to maintain the existing profit structure due to changes in the revenue base.
|
- Develop profit plans optimized for the current cost structure.
- Build a flexible organizational framework.
- Consider new business initiatives.
|
| Business model |
3 |
3 |
- Differentiation from competitors by expanding original tracking technologies.
- Difficulty calculating advertising effects due to the restrictions on cookie-based tracking.
|
- Conduct surveys on trends in tracking regulations, browser vendors and the World Wide Web Consortium (an organization established to expand the standardization of various types of internet technologies).
- Develop original tracking technologies and consider workaround measures.
|
| Business strategy |
1 |
8 |
- Improved profitability through higher value-added offerings and differentiation.
- Decline in profitability due to insufficient or delayed responses to changes in the business environment.
|
- Promote a differentiation strategy through data utilization and advanced product development.
- Make selective investments in priority areas.
- Diversify the revenue structure.
|
| Business continuation/Cyber security |
1 |
8 |
- Suspension of services or interruption of operations that may materially affect business continuity, including information leakage, data destruction or alteration, due to human errors in operations or intentional illegal acts, system failures caused by disasters, malware infections, targeted attacks, ransomware attacks that encrypt core systems and critical data, double extortion involving information theft and disclosure, and/or exploitation of vulnerabilities in systems or products.
|
- Establish an organization for system management and operate it continuously.
- Implement backups periodically.
- Check information on vulnerability and implement countermeasures.
- Monitor and defend against unauthorized access resulting from external cyber attacks.
|
Business continuation/
Crisis response |
1 |
8 |
- Difficulty in ensuring business continuity due to the concentration of physical resources (servers, etc.) and information systems in Tokyo, in the event of large-scale disasters, etc.
|
- Facilitate the decentralization and multiplexing of data centers through the use of multiple cloud services.
- Consider the possibility of deployment in other areas.
- Clarify restoration measures to be taken in the case of failures.
|
| Business continuation/large-scale disasters |
1 |
8 |
- Impact on business performance due to suspension of services in the event of an emergency disaster.
- Impact on business performance due to delays in post-disaster business recovery efforts.
|
- Formulate a BCP with an awareness of remote work.
- Periodic BCP training.
|
| Management of personal information |
1 |
8 |
- Leakage of the personal information of users due to intentional attacks/errors of related parties of the Company or the contractor, attacks by a third party with malicious intent, or unforeseen situations.
|
- Ensure compliance with operation rules for the maintenance and management of ISMS certification-based security levels.
- Implement the full-scale security check process.
- Continued education for employees.
|
| Data governance |
1 |
8 |
- Increasing trust in data governance.
- Improved operational efficiency, higher productivity, and strengthened competitiveness through the use of AI under appropriate AI governance.
- Loss of trust and customer churn due to problems in data acquisition methods and data management caused by poor data governance.
- Adverse impact on the reliability of business activities due to the generation of misinformation, discriminatory or inappropriate outputs, infringement of intellectual property rights or personal information, and noncompliance with laws and regulations, caused by insufficient AI governance such as usage policies and management frameworks for AI technologies.
|
- Development of operational rules for data governance and review of terms of agreement.
- Educate employees on data governance.
- Establish a Basic Policy on AI Ethics and AI Use Guidelines.
- Conduct risk assessments and monitoring when using AI.
- Educate employees on AI governance.
|
| System failure |
1 |
8 |
- Loss of sales or overcharging due to calculation/aggregation errors resulting from system malfunctions, specifications, or operational errors.
|
- Ensure that development processes are reviewed and tests are implemented.
- Use data with high accuracy.
- Conduct monitoring periodically.
|
| Investment strategy |
2 |
3 |
- Expansion of business domains with M&A and new businesses.
- Impact of delays in the recovery of the cost of investments and loans in M&A and new businesses, which may be caused by changes in the market or competitive environments, on consolidated results, growth, business expansion, etc.
|
- Carefully study and consider synergies with the Company’s existing businesses, business plans, composition of finances, contractual relations, etc. in M&A and investment in new business.
|
| Dependence on Specific Services |
2 |
3 |
- Decline in business performance due to a reduction in transactions with the Company resulting from a change in the business policy of a major business partner.
|
- Diversify business partners and strengthen new client acquisition efforts.
- Plan and develop services that are deeply embedded in clients’ business processes and revenue models, making them essential to operations.
|
| Technology Infrastructure |
2 |
3 |
- Increased maintenance difficulty, greater risk of failures, and difficulty in securing technical personnel due to the continued use of aging technology infrastructure.
|
- Gradually transition to next-generation technology infrastructure.
- Replace equipment with up-to-date devices in phases.
- Ensure stable operation of existing systems.
- Operate existing systems in parallel with next-generation infrastructure during the transition.
- Renew and strengthen the development organization and technologies.
|