Our holistic management approach to legal compliance and operational management fosters a culture of awareness to respect and ensure the privacy of our stakeholders. Data privacy policies ensure compliance with the Personal Data Protection Act 2012 in Singapore, and the European Union’s General Data Protection Regulation (GDPR) that came in to force in May 2018.
Internal IT Risk Management and Audit teams review best practices and enforce company security policies to identify gaps and support IT Policy governance. Audits target the control of digital data access and mitigating risks of such access, and ensuring rapid implementation of critical security patches and firewall updates. An annual external audit of technology and digital assets is conducted by an international cybersecurity consulting firm, to assess risk and response. Audit recommendations and suggestions are implemented to address ongoing security threats. Insurance coverage is in place to protect against cybersecurity risks.