Purpose

Evergreen Aviation Technology Co., Ltd. (hereinafter, the “company”) formulates this policy based on its business needs, complying with company operations,relevant laws, regulations, and customer requirements to ensure the confidentiality, integrity and availability of information assets, and to prevent from any threat, whether internal or external, intentional or accidental.

Applicability

1. All personnel of the company, business related suppliers with its employees, visitors, etc., shall abide the rules and procedures of this policy and relevant management mechanisms.
2. The company will impose disciplinary measures against its employees who violate information security regulations.

Information Security Objectives

The information security objectives of the Company are as follows:

1. Establish information security management processes and related standard operating procedures to maintain the confidentiality, integrity, and availability of information services.
2. Jointly protect the physical and environmental security to ensure the integrity and availability of the information infrastructure.
3. Develop an information operations continuity plan to enable the continued operation of business activities.

Annual Review

This policy shall be reviewed at least once a year to comply with relevant laws, regulations, and the latest developments in the information business, and shall be amended if necessary.