Managing Cyber Security PRC We recognised the critical importance of cybersecurity in our business operations and strictly adhere to the Cybersecurity Classified Protection 2.0 regulations outlined in the PRC Cyber Security Law. Compliance with these regulations requires us to meet varied security standards based on the classification of our network systems. At Yanlord, we adopt a holistic approach to cybersecurity management, built on three core pillars: Process, Technology, and People. In FY 2024, Yanlord’s customer service system, sales system, and sunshine procurement system successfully passed the reassessment for DJCP certification issued by the Ministry of Public Security of the PRC, reaffirming our commitment to cybersecurity compliance and system integrity. To further strengthen employee awareness of information security, we have introduced comprehensive training programs for all staff, supported by the Group’s Human Resources Department. These sessions cover fundamental cybersecurity concepts, common risks, and best practices for data protection. Additionally, IT professionals receive specialised training on network security, equipping them with advanced skills to safeguard our systems against potential threats. Through this structured and proactive approach, we reinforce our commitment to maintaining robust cybersecurity standards across our operations. Singapore In Singapore, we have established a Data Management Policy and a Cyber Security Policy to provide clear guidelines on data management, security, and access controls. These policies outline preventive measures designed to safeguard the Company’s network, infrastructure, computer systems, and employees from potential security threats. FY 2024 Target FY 2024 Performance FY 2025 Target No substantiated complaints1 concerning breaches of customer privacy or losses of customer data Achieved No substantiated complaints1 concerning breaches of customer privacy or losses of customer data Target and Performance To ensure responsible data management, we maintain detailed checklists and documentation, enforce authorisation protocols for handling sensitive data, and conduct daily offline tape backups as a safeguard against cyber-attacks. Additionally, we conduct regular security assessments to evaluate the effectiveness of our measures. These include annual disaster recovery exercises, ethical hacking trials for Proof of Concept, and Data Security Management audits, ensuring our systems remain robust and resilient. Employee awareness and preparedness are key components of our cybersecurity strategy. Designated employees undergo specialised training, while all staff receive electronic direct mail updates featuring case studies on recent cyber-attacks and preventive measures. This proactive approach strengthens cybersecurity awareness across the organisation and reinforces our resilience against evolving cyber threats. 1 Written statement by regulatory or similar official body addressed to the organisation that identifies breaches of customer privacy, or a complaint lodged with the organisation that has been recognised as legitimate by the organisation. CUSTOMER PRIVACY | MANAGEMENT APPROACH Contents Introduction Approach to Sustainability Upholding Good Governance Caring for Our Customers Empowering Our People Preserving Our Planet Creating Shared Value for Our Society GRI Content Index 39 Yanlord Land Group Limited Sustainability Report 2024
RkJQdWJsaXNoZXIy NTkwNzg=