Website Security Policy

Website Security Policy

Information Security Policy

Version: V2.0

Effective Date: February 24, 2024

1. Purpose and Scope

The purpose of this website ( Information Security Policy is to ensure that the information processing operations of the website can operate safely and effectively, while protecting the confidentiality, integrity, and availability (CIA) of user data.

2. Applicable Parties

This policy applies to all administrators, maintenance personnel, and users of the website content.

3. Information Security Management Matters

To achieve information security, we will adhere to the following principles:

  • Formulation and evaluation of information security policies
  • Information security organization
  • Access control
  • Password management
  • Protection of the confidentiality, integrity, and availability of website content
  • Information security incident management
  • Risk assessment and risk handling
  • Information security education and training

4. Information Security Measures

To ensure information security, we will implement the following measures:

  • Use of the latest security technologies and protective measures
  • Regular updating and maintenance of the website system
  • Encryption of sensitive user data transmission
  • Implementation of access control and authentication mechanisms
  • Regular information security review and testing
  • Data classification and protection
  • Physical security

5. Information Security Management Responsibility

This policy is defined and reviewed by the Information Security Officer and implemented after approval. All relevant parties should follow this policy and bear the corresponding supervision and execution duties.

6. Revision and Evaluation

This policy will be regularly evaluated by the management and revised as necessary. Revisions will be based on business needs, technological developments, results of risk assessments, and compliance with relevant regulations.

7. Inquiries and Complaints

If you have any questions or complaints about this Information Security Policy, please contact our Information Security Officer:

  • Email: []

Revision Notes

  • Updated the effective date.
  • Added data classification and protection, physical security in 3. Information Security Management Matters.
  • Added data classification and protection, physical security in 4. Information Security Measures.
  • Added address information in 7. Inquiries and Complaints.