Information Security and Privacy Management

PLANET strictly safeguards the security and privacy of its operation-related information and assets as well as the stakeholders, including customers, shareholders, suppliers and employees. PLANET has established the “Information Security Policy” as the basis of its information security management, based on which the company is able to implement and improve its works related to information security. PLANET is committed to continuous enhancement of its information safety management mechanism, thus ensuring the smooth operation and effectiveness of its information security management and privacy protection mechanism.

PLANET began to promote the establishment of the ISO 27001 Information Security Management System in December 2021, and obtained the ISO 27001:2013 certification in May 2022.

As of 2022, PLANET has not experienced any major incidents affecting the company's operations or infringing privacy of its customers. The total number of incidents involving information leakage, information theft or loss of customer data is 0.

Control of Risks Associated with Information Security

PLANET’s information security management system is evaluated at least once a year, or is re-evaluated in case of major changes in the company. The evaluation results are presented at the management review meeting and are revised as appropriate to control and mitigate information security risks.

The Company attaches great importance to information security management. On December 21, 2022, the implementation status of information security management was reported to the Board of Directors, and in December 2022, the Company participated in the "Information Security Liability Insurance" with an insurance period from January 1, 2023 to January 1, 2024, with the aim to obtain an overall information security protection for the Company.

◾ Organizational Structure for Information Security

PLANET’s information security management is in the charge of the Information Management Team under the CEO Office. In line with the establishment of the ISO 27001 system, the Information Management Team was renamed as MIS in 2022.

The office’s responsibilities mainly include information security and protection related works, emergency response to information security incidents and post-incidents recovery matters. The purpose of the office is to prevent the occurrence of information security incidents and minimize the impact exerted by information security incidents on the company's operations and loss of company assets.

◾ Information Security Policy 『Information Security, Everyone's Responsibility』

By strictly following ISO 27001 international standards to establish its information security objectives, PLANET is able to avoid the improper use, leakage, modification and destruction of information caused by human negligence and natural disasters, thus to minimize the potential risks and hazards to the company.

Channels for Information Security
Contact window E-mail
MIS robinc@planet.com.tw
Contact Us