Technology Innovation
The Company has undertaken several efforts to leverage mining processes, such as constantly renewing mining equipment, improving recovery processes for smelting and refining, and improving production technologies. Here are some of the initiatives we have worked on:
Digitalization
In line with technological advancements and digitalization, we innovate new technologies and strengthen the information technology (IT) systems to support the Company’s internal processes. Our IT Division focuses on developing the digitalization of business processes and key applications, as well as integrating between application systems.
Regarding the development of IT infrastructure and security, we prioritize the maintenance of IT systems and system monitoring, increase data center capacity, improve service quality, and leverage network connectivity and security systems. In our ef for ts to develop IT service and operational fields, we provide IT service facilities to end-users, such as device updates, adding Office Suite software licenses, and collaborating with professional service providers.
Customer Data Security and Confidentiality [418-1]
In addition to technological innovation, the Company is also committed to maintaining the confidentiality of all customer data as stated in every contract with customers. In this regard, the Company ensures that there is no misuse and/or leakage of data. Upon the completion of each transaction, data is securely stored in the system and safe storage media at the Data Center. Throughout 2023, there were no complaints or reports concerning breaches of customer privacy or loss of customer data. Until the end of the reporting period, there were no internal breaches, thefts, or losses of customer data. This achievement was made possible due to the effective functioning of Firewall, IPS, Antivirus, WAF, Sandbox, and Antispam functions and features.
Governance and Cyber Security Management
We are aware of the increasing risks of cybercrime due to rapid technological advancements. Thus, we are committed to protecting customer data and privacy to the fullest extent. Regular security evaluations, vulnerability identification, and penetration testing are conducted both internally and externally on systems, products, and internal
data.
We continuously enhance security at the Data Center by scheduling maintenance on all devices within it and testing security systems with the Security Operation Center (SOC). All new applications are subject to penetration testing before publication. The Company further has obtained data security certifications, such as ISO/IEC 27001:2013 and ISO 9001:2015. To assess the level of cyber security maturity (CSM), the Company collaborates with the National Cyber and Crypto Agency (BSSN) to quantify our CSM maturity level to reach level 4 Managed Implementation in 2022.
The Company also actively organizes ISO 27001-related training attended by the IT team. Additionally, we send the team to participate in the Computer Security Incident Response Team (CSIRT) and receive Technical Guidance on Information & Cyber Security by BSSN.