In order to protect the information entrusted to us by our customers, and our information assets, from threats such as accidents, disasters, and crimes, and to live up to the trust of our customers and society, IntaSect Communications Inc. (hereinafter “the Company”) is committed to information security on a company-wide basis based on the following policy.

1. The Responsibility of Management

The Company will strive to systematically and continuously improve and enhance information security under the leadership of management.
In addition, management bears ultimate responsibility for the protection of cardholder data stored, processed, or transmitted by the Company, and is accountable for the establishment, maintenance, and continuous improvement of the PCI DSS compliance program.

2. Establishment of Internal Systems

The Company has established the Risk Management Office to maintain and improve information security, and has laid down formal internal rules on information security measures.

3. Employee Initiatives

Employees of the Company shall strive to acquire the knowledge and skills required to ensure our commitment to information security.

4. Compliance with Legal and Contractual Requirements

The Company shall comply with laws, regulations, codes, and contractual obligations related to information security, to meet the expectations of our customers.

5. Response to Violations and Accidents

In the event of any violation of laws and regulations, breach of contract, or accident related to information security, the Company shall take appropriate action to prevent recurrence.

Established: February 16, 2011
Revised: March 17, 2026
IntaSect communications, Inc.
President and Representative Director Tan Yufeng