managing potential risks from service provision; (c) having a work procedure and an internal control system with details covering the operation as specified in Clause 4. In this regard, the applicant for a

technology operation, either by an internal unit of the securities company or by an outsider inspector, in order to inspect all of the potential risks on information technology. In case of inspection by an

securities company has prescribed securities company to have efficient internal control system, adequate securities system that is adequate for preventing unauthorized person to know or amend information

capital market, investment management, or branch management of the applicant; (c) work related to control, supervision and management of business units concerning operation, compliance, internal audit or

, internal control and follow up measures to ensure effective implementation. Clause 4. Beside the qualifications prescribed under Clause 3, an applicant for derivatives business operator registration under

include, internal control system, information security system to prevent access from unauthorized person, and effective Chinese Wall between difference departments and staffs as well as having measures for

) being able to show that an internal control system capable of preventing wrongful acts that may cause damage to securities issuers or securities holders will be put in place. Clause 4 The application for

information by unauthorized personnel [ii] internal control and [iii] risk management for undertaking precious metal derivatives brokerage including measure for controlling and monitoring performance of its

internal control or the compliance and information management system, nor being in the process of amending thereof, unless granted an exemption from the SEC Office. (Details of the matters subject to

of interest and accessing inside information by unauthorized personnel [ii] internal control and [iii] risk management for undertaking precious metal derivatives brokerage including measure for