Privacy Protection and Cybersecurity Overview
Why is this Important?
The Company’s internal information is an asset that must be protected effectively. Hence, EGCO Group established access restrictions to ensure appropriate cybersecurity risks measures. It is one of the preventive measures implemented against cybercrimes, attacks, sabotage, espionage, and mistakes. The 3 fundamental IT security components are
Management Approach
Privacy Protection and Cybersecurity Target

Privacy Protection and Cybersecurity Governance
Risk Oversight Committee stipulates an internal audit policy regarding risk management activities as well as investigates IT development related operations regularly.
Explore more
Cybersecurity Measures
EGCO Group stipulated and published IT security and cybersecurity policy for every employee, including external parties providing services for EGCO Group, to use as an operational guidelines on IT related tasks, ensuring full compliance with related laws.
Explore more
IT Security/ Cybersecurity Process & Infrastructure
EGCO Group’s IT Security System was certified ISO/IEC 27001:2013 which covers processes such as grievance management, change management, document control, asset utilization monitoring, etc.
Explore more
Data Privacy Protection
EGCO Group places great importance on data protection and privacy of employees, customers, suppliers, and every stakeholder.
Explore moreRelated Documents
Policies, Requirements and Performance
-
Sustainability Manual
-
Personal Data Protection Act (PDPA) Statement
-
Personal Data Protection Policy
-
Privacy Policy
-
End User Security Guideline
-
Information Technology Development and Cyber Security Oversight Committee
-
Professional Service Agreement (stated 'Customer Privacy Information')