the assessment process to evaluate the qualifications of the applicants seeking licenses to operate digital asset businesses. If an applicant is qualified, SEC will propose Minister of Finance to
continuously conducted to learn of investor behaviors, evaluate knowledge level and satisfaction towards the SEC?s investor protection mechanisms. The feedback so obtained will be beneficial to the SEC?s
investment diversification; and (7) the asset management company will be required to evaluate risk profile of, and give proper advice to, each fund member (suitability) who has investment choices
find supporting evidence to satisfy the audit procedures due to limitation on scope of audit imposed by the company management in several matters including audit procedures to evaluate effectiveness of
Communications with relevant persons (7) Division 7 Cross-border communication (8) Division 8 Companies shall test and assess the BCP (Training, Exercising and Auditing) (9) Division 9 Examples of emergency
) Division 7 Cross-border communication (8) Division 8 Companies shall test and assess the BCP (Training, Exercising and Auditing) (9) Division 9 Examples of emergency incidents which may cause major
); (5) review procedures and processes in the management of information security incidents, after the testing under (4) is carried out, at least once a year; (6) evaluate the results of the testing under
) establish conditions and controls relating to information security in an agreement signed by both parties; (2) monitor, evaluate, review and audit service delivery of the outsourcee regularly; (3) re-assess
system (KYC) that are appropriate to evaluate product risks against characteristics of each customer; - separate departments or personnel responsible for customer assets safekeeping from other operational