Purpose |
The Company's Cyber Security Policy (hereinafter referred to as the Policy) is referred as the highest guidelines for the cyber security management within Air Asia Co., Ltd. (hereinafter referred to as the company). This policy enhances the safe and stable operation of the information and communications and provides reliable services for information and communications and ensures the confidentiality, integrity and availability of information assets which promotes the company’s business successfully with the compliance of the ISO 27001 international standards. |
Objective |
(1) To ensure the confidentiality of relevant information about the Company's business and to safeguard the national secrets and personal data. |
Strategy |
(1) Should take into account the relevant laws and regulations and operational requirements, assess the security needs of operations for information and communications, and establish the relevant procedures to ensure the confidentiality, integrity and availability of information assets. |
Review |
This policy is approved by the Chief Cyber Security and is evaluated at least once a year or re-evaluated in the event of significant organizational changes (e.g., organizational adjustments, business changes, etc.). It shall be appropriately revised in the basis of the results of the assessment, the relevant laws and regulations, the latest developments in technology and business. |