Security system

Microsoft AI Cloud Partner

applippli Co., Ltd. is a Microsoft partner company.

Microsoft Azure

IP address restrictions are available. [IP SETTING]
We do not store user passwords used by customers. [NoHoldPass]
User accounts are only for connecting to the cloud environment
Specifications do not allow any control within the cloud environment
*Resolved by using the functions of the Yayoi products you use within the cloud environment
*Account additions and deletions will be handled by our company upon request (no privilege management)[USERS CHANGE]
Multi-tenant cloud environments are not provided (logically separated)

Development in accordance with development guidelines from trusted organizations such as CERT, OWASP, SANS, and IPA
Perform vulnerability assessments and penetration tests regularly (at least once a year)

Operation monitoring/configuration management/change management/malware countermeasures/vulnerability management/time synchronization
*Implement measures according to the severity when a vulnerability is discovered
*Stop unnecessary services and close unnecessary ports
Service continuity plan complies with ISMS (ISO27001:2022)
Document management complies with ISMS (ISO27001:2022)

Compliant with Microsoft Azure
*All communications from client to cloud are encrypted
*Encryption keys are maintained and managed by Microsoft
Complete data deletion upon termination of service

Management system and training are in compliance with Microsoft/ISMS (ISO27001:2022)

Compliant with Microsoft (Microsoft Azure)
*Data center: Disaster prevention measures/Entry&exit restrictions/Entry&exit record management/Work management (monitoring)