Upholding Our Integrity
Eradicating Corruption and Conflicts of Interest
We are committed to upholding the highest standards of business ethics to prevent corruption, bribery, and conflict of interest along the value chain. We have established the Bribery and Illicit Advantage P&P, the Conflict of Interest P&P, the Advantage & Entertainment P&P, the Anti-Money Laundering and Counter-Terrorists Financing P&P, and the Whistle-blowing P&P to lay down reporting requirements for proper and timely handling. These P&P are stipulated in the Code of Conduct and provided to new hires as a guide for ethical decision-making and to emphasise zero tolerance for assets. This obligation also extends to third parties, including corruption. During the Reporting Period, the Group provided 6,054 hours of compliance and anti-bribery training for colleagues to reinforce the Group’s zero-tolerance approach against bribery.
During the Reporting Period, no material non-compliance incidents regarding corrupt practices were identified.
Safeguarding Cyber Security and Protecting Data Privacy
We view cybersecurity as our top priority to ensure the safety and efficiency of our business operations. The Information Security P&P help colleagues ensure that information will be protected against any unauthorized access and confidentiality of the information will be guaranteed.
As stated in our Information Security P&P, all colleagues are obligated to protect our information and information assets. This obligation also extends to third parties. Managers should ensure adequate control measures, physically and/or electronically, exist in their operations regarding information security and in line with the security levels.
Business units should direct all inquiries and requests related to personal data and privacy to the designated Personal Data Officer. The Personal Data Officer will convey these communications to the Legal Department for review and advice as needed. When collecting personal data, business units ensure Personal Information Collection Statement (“PICS”) concerning customer privacy being provided. During the Reporting Period, the Group’s Legal Department has reviewed and advised 11 PICS submitted by business units regarding their collection and use of personal data.
With most of our colleagues working from home during the COVID-19 pandemic, we offered 1,943 hours of online IT security training sessions to strengthen cybersecurity awareness and improve cybersecurity culture.
During the Reporting Period, no material non-compliance incidents regarding information and cyber security were identified.