HomeSecurity Policy

Security Policy

Security Policy

Security Framework of Yaraku Translation

To ensure that Yaraku Translation can be used with confidence in business settings,
we have established a robust information management system and operate our services with the utmost care.

Security Features

Yaraku Translation Security Overview
  • Granular management of data and applications
  • Data encryption
  • Continuous data backup
  • 24/7 system monitoring
  • Vulnerability and anti-hacking measures
  • SSO (Single Sign-On)
  • Private cloud deployment

Compliance Program

Yaraku Translation has obtained the following certifications.

ISMS Information Security Management System Certification Icon

ISMS (ISO/IEC 27001:2022) Certification

Yaraku Inc.’s Tokyo headquarters obtained certification for the Information Security Management System (ISMS) international standard (ISO/IEC 27001:2022, JIS Q 27001:2023) on December 22, 2022.

[Certification Overview]
Registered Organization: Yaraku Inc.
Scope: Planning, development, and provision of related services for multilingual communication tools
Standard: ISO/IEC 27001:2022, JIS Q 27001:2023
Certificate Number: IS778669
Registration Date: December 22, 2022
Last Updated: February 4, 2025

ISO/IEC 27001:2022 ISMS Certification Mark Certificate Number IS778669

Data Management

Data stored in Yaraku Translation is managed to ensure the safety and privacy of our customers.

Database Security Icon

Database

In Yaraku Translation, translation data is managed individually for each customer. This means that third parties cannot access or modify the database. At Yaraku Inc., only authorized employees can access the database, and it is used solely for system maintenance and troubleshooting purposes.

Data will not be disclosed except in specific circumstances, such as when customer consent has been obtained or when required by law.

Data in the database is continuously backed up. In the event that data is lost due to human error, the system data can be restored using up to 14 days of accumulated backup data.

Data Encryption Icon

Encryption

Yaraku Translation encrypts all communications using SSL*. This prevents third parties from viewing or tampering with the content. Additionally, highly confidential data such as passwords is encrypted within the database.

* SSL (Secure Socket Layer) is a widely used mechanism for encrypting communication content to prevent eavesdropping and tampering, also used on web pages for online payments. Data communication is encrypted to prevent data theft and tampering.

Vulnerability and Anti-Hacking Measures

To protect our customers’ valuable data, we implement various vulnerability and anti-hacking countermeasures.

Vulnerability Countermeasures Icon

Vulnerability Countermeasures

Vulnerability testing is conducted regularly to confirm the safety of our systems. System monitoring operates continuously (24/7), with anomalies such as disk usage, memory, and CPU constantly tracked.

Anti-Hacking Measures Icon

Anti-Hacking Measures

Our systems are protected by firewalls to guard against unauthorized access and other security issues.

Yaraku Translation implements various countermeasures against SQL injection, cross-site scripting, OS command injection, HTTP header injection, and session management vulnerabilities to minimize the risk of server and database hacking.

Infrastructure

Yaraku Translation operates on AWS infrastructure that meets strict security requirements.

Data Center Security Icon

Data Centers

Yaraku Translation uses Amazon Web Services (AWS) data centers. AWS servers are deployed across multiple data centers, each with independent power, cooling, and network environments. If a failure occurs in a specific data center, the system automatically switches to a standby server in another data center to continue operations.

AWS data centers have their own site security, disaster prevention measures, and risk management. For more information about Amazon Web Services, please refer to the AWS Security Center and AWS Data Center Controls pages.

Flexible Security Policy Options

Various options are available to help you implement Yaraku Translation with confidence.

Security Options Icon

Security Options

  • SSO: Single Sign-On using SAML (Security Assertion Markup Language) authentication is available. Authentication via Microsoft ADFS and Google G Suite is also supported.
  • IP Address Restriction: Restrict the IP addresses that can access Yaraku Translation.
  • Password Policy Settings: Configure password rules including mandatory periodic changes, required combinations of uppercase, lowercase, and numbers, and minimum character length.
  • Automatic Document Deletion: Set automatic deletion at regular intervals for handling highly confidential translation documents.
  • Server Options: Private cloud (VPC) deployment is available to meet your security requirements. For details, please contact us via the Contact page.
Integration Partner Icon

Integration Partner

Sony Network Communications Inc. leverages its technical expertise and know-how cultivated as an Internet service provider to offer support for robust and secure implementation of Yaraku Translation.

They provide a range of security measures, server configuration integration services, and maintenance and operation services tailored to various customer requirements.

Contact Us
Try for Free

Information Security Policy

Basic Philosophy

Yaraku Inc. (hereinafter “the Company”) conducts its business under the philosophy of “Making Global Communication Enjoyable.”
The information assets we handle in our business operations, including customer information, are of utmost importance to our management foundation.
Those who handle information assets, including executives and employees who recognize the importance of protecting information assets from risks such as leakage, damage, and loss, shall comply with this policy and engage in activities to maintain information security—including confidentiality, integrity, and availability of information assets.

Basic Policy

  1. To protect information assets, we will establish information security policies and related regulations, conduct business in accordance with them, and comply with laws, regulations, other norms related to information security, and contractual obligations with customers.
  2. We will clarify the criteria for analyzing and evaluating risks such as leakage, damage, and loss of information assets, establish a systematic risk assessment methodology, and conduct regular risk assessments. Based on the results, we will implement necessary and appropriate security measures.
  3. We will establish an information security structure centered on the responsible executive, and clarify the authority and responsibilities related to information security. We will also conduct regular education, training, and awareness activities to ensure that all employees recognize the importance of information security and handle information assets appropriately.
  4. We will regularly inspect and audit compliance with the information security policy and the handling of information assets. Any deficiencies or improvement items identified will be promptly corrected.
  5. We will take appropriate measures in response to information security events and incidents. In the event of their occurrence, we will establish response procedures in advance to minimize damage, respond promptly, and take appropriate corrective actions. In particular, for incidents involving business interruptions, we will establish a management framework and conduct regular reviews to ensure business continuity.
  6. We will establish an information security management system with objectives to realize our basic philosophy, implement it, and continuously review and improve it.

Established: September 30, 2022
Yaraku Inc.
Representative Director: Yu Sakanishi