documented information security policy which addresses at least the following matters: (1) policy on the use of cloud computing which covers the methods for selection and evaluation of cloud providers, review
undisclosed except in the case of disclosure by virtue of law or for the benefit of the financial institution system or the public; (e) members shall not help or support fraudulently any act deemed to be an
plan; (2) Evaluation of the test results under (1) and preparation of the test evaluation report by the personnel in charge who is qualified, knowledgeable and independent; (3) Reporting result of the
continuity plan under Clause 6; (2) Evaluation of the test results under (1) and preparation of the test evaluation report by the personnel in charge who is qualified, knowledgeable and independent; (3
which covers the methods for selection and evaluation of cloud providers, review of the qualifications of the cloud providers, the terms of services, and inspection of records and evidence; (2) policy on
evaluation by the SEC Office regarding the management of the operational risk and the customer relationship risk not higher than the medium level or in an acceptable level, unless granted an exemption from the
suit the market needs and to serve customers better. In addition, this will help reduce personnel training costs for securities companies which regularly organize in-house training. 3. Duration of
evaluation shall be reported to the Board or the assigned working group periodically as deemed appropriate. The evaluator as such may be insiders or outsiders of companies. 8.4 In order to adjust the BCP to be
Capital Market Supervisory Board concerning Personnel in the Capital Market Business . Clause 4 A management company shall arrange the evaluation of fund performance on a regular basis, and disclose the
prior approval from the Office, which will help facilitate their business operation.