Communications with relevant persons (7) Division 7 Cross-border communication (8) Division 8 Companies shall test and assess the BCP (Training, Exercising and Auditing) (9) Division 9 Examples of emergency
with Chapter 4; (5) additional rules in accordance with Chapter 5. Chapter 1 Governance of Enterprise Information Technology _________________ Clause 5 An intermediary shall establish a documented policy
, and the processes and procedures shall be improved in line with the policy which has been changed. Additional Guidelines 1. The policy on the management of information technology risk under Clause 5(1
, how does the firm inform its personnel or what kind of process that the firm use to ensure that its staff evaluate clients risk? 5 Regarding integrity checks does the firm’s conduct, for example
under Section 3 and the Notification of the Securities and Exchange Commission concerning Additional Determination of Type of Juristic Person Classified as Institutional Investors; (b) using standardized
Company and the subsidiaries, including at least comparative information during the past three years (or up to the actual operation period). Additional similar information beyond the past three years
otherwise entitled. Clause 3 Intermediaries shall identify its critical functions, assess their risks of major operational disruptions, conduct business impact analysis and assess potential damages arising
during the period of providing services: (1) compile and assess the information of the service-receiving client for the following purposes: (a) to know the client; (b) to categorize the client; (c) to
following actions during the period of providing services: (1) compile and assess the information of the service-receiving client for the following purposes: (a) to know the client; (b) to categorize the
securities company shall identify its critical functions, assess their risks of major operational disruptions, conduct business impact analysis and assess potential damages arising from major operational