Business Operation and Operating Results Corporate Governance Financial Statements Attachments
The Company’s Risk Management
The Company established and complied with the human rights policies and labor practices
covering all areas of business operations, including business partners and alliances. The Company has
human right due diligence (HRDD), creating integrated human right promotion processes with the Company’s
operations. The Company also provided channel to receive complaints and recommendations on human
rights which are transparent and accessible to employees and all groups of stakeholders. In case there is
violation of human rights, the Company has plans to manage and resolve the issues that include the
formulation of damage compensation and remedy measures, and systematic monitoring and assessment
of corrective measures. During the past year, the Company has not had any complaints or prosecutions
for human rights violations at all.
1.5 Risks Relating to Data Security, Information Technology Systems and Cyber Threats
At present, cyber threats tend to increase and become more complex, causing the Company
to place importance on cyber security to prevent the ill-intentioned person from causing damage to the
Company’s internal system, especially essential information and personal data in the system. There are
other cyber threats, such as DDoS Attack, Malware/Virus, etc., which may affect finance, reputation, and
credibility of the Company, and may cause the Company to be punished from non-compliance with the
law or may lead to business interruption.
The Company’s Risk Management
The Company reviewed and updated the computer and information technology system
security policy continually and constantly by applying the appropriate international measures that are in
accordance with the Cyber Security Act and Personal Data Protection Act. Information technology security
measures have been added, such as determining access rights to essential information in the system,
developing capacity of data security and information technology personnel as well as strengthening
knowledge, understanding, and awareness to the employees and management at all levels, including
conducting cyber threat response plants regularly.
1.6 Risks from Implementation of Artificial Intelligence (AI) Technology
The Company foresaw the opportunity to implement AI to increase efficiency of various
works. However, the implementation of AI technology may bring about risks, such as cyber attacks targeting
AI infrastructure, data governance challenges, and the skills development of personnel so they can fully
and safely use benefits from AI.
บริิษััท สหการประมููล จำำากัด (มหาชน)
Union Auction Public Company Limited
43