SUSTAINABILITY STATEMENT MATERIALITY MATTERS (cont’d) Zetrix AI’s Cyber Security Measures: System Threat and Vulnerability Management Physical and Logical Access Controls Intrusion Detection and Prevention IT Security Training and Awareness IT Audit and IT Governance Programmes Antivirus and Anti-malware System The use of external hardware appliances, such as thumb drives and other media, are also restricted within Zetrix AI premises. Regulations, standard operating procedures and enforceable regulations for use of corporate systems, con dential data, e-mail, mobile devices and passwords. Compliance with PDPA in dealing with personal information collected in the course of commercial transactions. Deployment of rewalls, antivirus and anti-malware systems, access management systems and vulnerability systems throughout the entire IT infrastructure. Data transmitted through our networks is encrypted using the latest encryption technologies to ensure con dentiality. Adherence to Payment Card Industry Data Security Standard in the handling of credit card information for our e-services transactions. Regular audit and penetration test to ensure the robustness of the entire IT infrastructure. Websites and social media portals with high risks in cyber security are restricted to prevent malicious attacks via the exploitation of vulnerabilities. Constant training is provided to employees to ensure that employees are aware of the security standards that we need to adhere to. Zetrix AI’s Cyber Security Measures: System Threat and Vulnerability Management Physical and Logical Access Controls Intrusion Detection and Prevention IT Security Training and Awareness IT Audit and IT Governance Programmes Antivirus and Anti-malware System The use of external hardware appliances, such as thumb drives and other media, are also restricted within Zetrix AI premises. Regulations, standard operating procedures and enforceable regulations for use of corporate systems, con dential data, e-mail, mobile devices and passwords. Compliance with PDPA in dealing with personal information collected in the course of commercial transactions. Deployment of rewalls, antivirus and anti-malware systems, access management systems and vulnerability systems throughout the entire IT infrastructure. Data transmitted through our networks is encrypted using the latest encryption technologies to ensure con dentiality. Adherence to Payment Card Industry Data Security Standard in the handling of credit card information for our e-services transactions. Regular audit and penetration test to ensure the robustness of the entire IT infrastructure. Websites and social media portals with high risks in cyber security are restricted to prevent malicious attacks via the exploitation of vulnerabilities. Constant training is provided to employees to ensure that employees are aware of the security standards that we need to adhere to. Zetrix AI has continuously sought ways to improve security by updating the Group’s IT policy and procedures when needed to be in strict compliance with the ISO/IEC 27001 Information Security Management System and NIST Cybersecurity Framework. The Group is also in full compliance with the Personal Data Protection Act (“PDPA”). Zetrix AI is currently not a member of the Global Network Initiative. Nevertheless, in March 2026, the Group announced its involvement in the newly-formed World Data Organisation (“WDO”), as a member of the inaugural council and the lead representative for ASEAN. The WDO, comprised of members across multiple industries, universities, think tanks, international organisations and institutions, is focussed on jointly building a global data cooperation platform, sharing digital development opportunities and improve global data governance. 96
RkJQdWJsaXNoZXIy NDgzMzc=