Risk Management:
The company has established a "Risk and Opportunity Management Procedure" to assess the potential impacts of various risks and opportunities on its operations, including areas such as corporate governance, energy resources, social inclusion, information security, and research and development innovation.
Through risk response measures, risk avoidance, and risk mitigation strategies, risks are managed within acceptable limits to ensure stable operations and the ongoing implementation of sustainable corporate development, thus safeguarding the rights of stakeholders.
Risk Management Organizational Structure
Risk Management Process
The company's risk management process includes risk identification, risk assessment, risk response and monitoring, and risk reporting and disclosure.
Each year, all departments assess and discuss potential risks and opportunities related to corporate governance, energy resources, social inclusion, information security, and research and development innovation, considering both the impact and frequency of occurrence. These evaluations are regularly reported to the Sustainable Development Committee and the Board of Directors.
Risk Identification and Management Operations Status
| Issue | Risk Assessment Item | Risk Management Policy or Strategy |
|---|---|---|
| Environment | Environmental Impact, Energy Management, Water Resource Management | 1. Promote chemical reduction initiatives and increase waste recycling, with monthly tracking. 2. Promote greenhouse gas inventory, with quarterly tracking. 3. Implement energy-saving plans, with semi-annual tracking. |
| Society | People (including Human Rights) | 1. Conduct employee human rights training. 2. Perform human rights assessments for suppliers. |
| Corporate Governance | Corporate Governance, Information Security and Privacy Management, R&D Innovation, Integrity and Anti-Corruption | 1. Promote the Board diversity policy. 2. Implement TISAX (Trusted Information Security Assessment Exchange) to enhance information security and privacy management. 3. Strengthen R&D patent capabilities by setting annual patent targets, conducting intellectual property rights training, and training patent instructors. 4. Strictly enforce the Code of Ethical Conduct, establish a whistleblowing mechanism, and conduct integrity training. |