Information security strategy and resource investment

SKL is committed to providing customers with a sense of security and continuously promoting a culture of information security. In order to build a solid and trustworthy financial information security system, we have developed information security strategies from three aspects: "pre-incident protection", "during incident response" and "post-incident recovery". SKL continues to invest in building a complete information infrastructure, implementing information security management, monitoring, protection and other related budgets.

Information security incident reporting and handling

SKL has formulated the "Emergency Reporting Regulations", "Guidelines for Information Security Incident Reporting and Response Management", "Guidelines for Response to Personal Information Breaches", and other internal regulations, which stipulate that notification of a data security incident or personal information breach shall be completed on the same day to facilitate prompt response and handling. In the event of a material information security incident, relevant departments will be invited to convene emergency response meetings. If a personal information breach incident jeopardizes the rights and interests of a large number of parties, an external expert will be commissioned to conduct overall diagnosis and review of the mechanism on corrective and preventive measures.

Raise awareness of data security protection