My EG Services Berhad Annual Report 2019

ANNUAL REPORT 2019 45 MATERIALITY (CONT’D) MYEG’s IT Security Protocols and Practices: Data transmitted through our networks is encrypted using the latest encryption technologies to ensure confidentiality. Regulations, standard operating procedures and enforceable regulations for use of corporate systems, confidential data, email, mobile devices and passwords. The use of external hardware appliances such as thumb drives and other media are also restricted within MYEG premises. Websites and social media portals with high risks in cyber security are restricted to prevent malicious attacks via the exploitation of vulnerabilities. Constant training is provided to employees to ensure that employees are aware of the security standards that we need to adhere to. Physical and Logical Access Controls IT Security Training and Awareness Antivirus and Anti-malware System IT Audit and IT Governance Programmes Intrusion Detection and Prevention System Threat and Vulnerability Management Deployment of firewalls, antivirus and antimalware systems, access management systems and vulnerability systems throughout the entire IT infrastructure. Adherence to Payment Card Industry Data Security Standard in the handling of credit card information for our e-services transactions. Compliance with Malaysia’s Personal Data Protection Act (“ PDPA ”) in dealing with personal information collected in the course of commercial transactions. Regular audit and penetration test to ensure the robustness of the entire IT infrastructure. MYEG’s Cyber Security Measures: SUSTAINABILITY STATEMENT