Information Security Policy
Committed to maintaining the confidentiality, integrity, and availability of the company's information assets.
ENE Technology Inc values information security management. In order to ensure the confidentiality, integrity, and availability of the company's information assets, and to maintain the continuity of company operations and the interests of stakeholders, this information security policy is established as the basis for the company's information security management.
This policy applies to all employees, outsourced service providers, data users, and other personnel who come into contact with the company's information assets. The scope of the company's information security management covers aspects such as organization, employees, physical environment, and information technology, aiming to reduce information security risks caused by factors such as human error, intentional attacks, system anomalies, or natural disasters through institutionalized management and continuous improvement.
The company's information security management objectives are as follows:
- Maintain the security of the company's data, systems, equipment, and networks to ensure stable operation of services.
- Implement access control management to ensure that information is used only by authorized personnel.
- Prevent unauthorized access, modification, leakage, damage, or destruction, and maintain the accuracy and integrity of information.
- Establish an information security incident reporting and response mechanism to properly handle information security incidents and potential vulnerabilities.
- Strengthen the protection of personal data and important business information to reduce the risk of data breaches or improper use.
- Comply with information security, personal data protection, and relevant laws and regulations related to publicly listed companies and regulatory agencies.
- Continuously promote information security education and training to enhance the information security awareness of all employees.
The company promotes information security management work through relevant responsible units, and the management provides necessary resources and support. All colleagues and relevant partners should comply with this policy and the company's information security-related regulations, and report and handle any information security incidents or suspicious vulnerabilities in a timely manner according to the company's reporting mechanism.
The company regularly reviews the information security management measures and policy content, and makes adjustments and improvements based on changes in laws and regulations, requirements from authorities, developments in cybersecurity technology, and operational needs of the company, to ensure the effectiveness of the information security management system and the sustainable stability of the company's operations.
