Company Policy Statement

The objective of DIDLOGIC Executive Management is to continually strengthen and improve the
overall capabilities of the ISMS according to ISO27001, to increase professional skills in terms of
information security management and technology, to make the DIDLOGIC management system
so complete that reliable certification standards are effective, to ensure information- related
business operations continue to be carried out to meet certification standards and to establish a
sustainable operation plan for business that is cost effective, and to establish quantified
information security goals through annual management and review meetings.
The objective highlights the following:

• Information is only accessible to authorized persons.
• Confidentiality of information is maintained.
• Integrity of information is maintained throughout the process.
• Business continuity plans are established, maintained, and tested.
• All personnel are trained on information security and are informed that compliance with
  the policy is mandatory.
• All breaches of information security and suspected weaknesses are reported and
  investigated.
• Procedures exist to support the policy, including virus control measures, passwords, and
  continuity plans.
• Business requirements for availability of information and systems will be met.
• The DIDLOGIC is responsible for maintaining the policy and providing support and
  advice during its implementation.