100 Good Corporate Governance Principles and Code of Business Ethics (Edition 2022) 5. Data Protection and Cyber Security EGCO recognizes the importance of corporate data, classified as business asset to be safeguarded efficiently. Therefore, it prioritizes data protection and classification for internal use, to shield the Company from all forms of data security risk and harm. The Company institutes surveillance system against cyberattack, sabotage, espionage, and various errors by enforcing an IT and cybersecurity policy, with the following guideline for EGCO Personnel: 5.1 Follow strictly the laws, obligations, regulations, rules, policies and guidelines with respect to Data Protection and Cyber Security, and Personal Data Protection. 5.2 Use the Company’s asset wisely and to optimum benefit of the Company, while taking care against damage or loss. 5.3 Do not violate or disclose factual and personal information prior to permission, or consent of data owners, or ground stated in the law. 5.4 Determine the period of record keeping and classification of business information, with accuracy, completeness and traceability. Upon declassification, there must be proper disposal measures in place different types of documents. 5.5 Prepare business, accounting, financial documents and reporting for submission to the authority and other parties with caution and in good faith; and follow the Company’s accounting methods which comply with established standards. 5.6 Comply strictly with accounting, financial and internal control criteria, to ensure safeguard of the Company’s asset from exploitation or unauthorized use.
RkJQdWJsaXNoZXIy ODg4NTI=