86 5IFSFGPSF .:&( DPOUJOVFT UP TPMJEJGZ JUT TZTUFNT QSPUPDPMT BOE CFTU QSBDUJDFT UP QSPUFDU BOE SFDPWFS DPNQVUFS TZTUFNT EFWJDFT OFUXPSLT BOE QSPHSBNNFT BHBJOTU BOZ UZQF PG DZCFSBUUBDL MYEG’s Cyber Security Measures: System Threat and Vulnerability Management Physical and Logical Access Controls Intrusion Detection and Prevention IT Security Training and Awareness IT Audit and IT Governance Programmes Antivirus and Anti-malware System Data transmitted through our networks is encrypted using the latest encryption technologies to ensure confidentiality. Adherence to Payment Card Industry Data Security Standard in the handling of credit card information for our e-services transactions. Regular audit and penetration test to ensure the robustness of the entire IT infrastructure. Websites and social media portals with high risks in cyber security are restricted to prevent malicious attacks via the exploitation of vulnerabilities. Constant training is provided to employees to ensure that employees are aware of the security standards that we need to adhere to. The use of external hardware appliances such as thumb drives and other media are also restricted within MYEG premises. Regulations, standard operating procedures and enforceable regulations for use of corporate systems, confidential data, email, mobile devices and passwords. Compliance with PDPA in dealing with personal information collected in the course of commercial transactions. Deployment of firewalls, antivirus and antimalware systems, access management systems and vulnerability systems throughout the entire IT infrastructure. MYEG has continuously sought ways to improve security by updating our IT policy and procedures when needed to CF JO TUSJDU DPNQMJBODF XJUI UIF *40 *&$ *OGPSNBUJPO 4FDVSJUZ .BOBHFNFOU 4ZTUFN BOE /*45 $ZCFSTFDVSJUZ Framework. The Group is also in full compliance with the Personal Data Protection Act (“PDPA”). MYEG is currently not a member of the Global Network Initiative. MATERIALITY MATTERS (cont’d)
RkJQdWJsaXNoZXIy NDgzMzc=