1. 資訊管理與安全
由里所有成員皆有責任成為由里所使用資訊的保管人,必須確保所共享的資料是在「因營運而必須知道或使用才分享」的基礎上執行的。假使機密資訊流出,可能會損害由里的競爭力、財務和聲譽。這不僅限於由里的資訊,也包括由里的業務合作夥伴所提供的任何資訊。
Information Management and Security
Every member of YULI has a responsibility to be a custodian of the information used by YULI, ensuring that data sharing is based on operational necessity. Unauthorized disclosure of confidential information can harm YULI's competitiveness, finances, and reputation. This applies not only to YULI's own information but also to any information provided by business partners.
2. 網路安全
由里透過健全的資訊管理和安全措施來幫助降低網路攻擊風險,並且妥善管理任何漏洞/錯誤。
個人或團隊在未經由里資訊合作夥伴評估核准和監督的情況下使用或購買軟體,可能會給由里帶來重大風險,如:資料遺失、無法控制或瀏覽潛在敏感資料、網路風險不知情的增加,將會造成由里資訊合作夥伴無法管理其安全性與合規性。
Cybersecurity
YULI employs robust information management and security measures to mitigate risks of cyber attacks and to manage vulnerabilities and errors effectively. Using or purchasing software without prior assessment, approval, and supervision from YULI's information partners can pose significant risks, such as data loss, unauthorized access to sensitive information, and increased unknown cybersecurity risks.
3. 個資隱私與安全
作為營運的一環,由里會蒐集、儲存和處理員工紀錄到客作的個人資料。因此由里員工必須努力保護任何資料的機密性和安全性,從而保護個人資料隱私權。若由里員工處理任何個人資料,必須確保這樣做具備有效的商業目的,並且對個人資料的使用方式保持透明,符合隱私權聲明。
Personal Data Privacy and Security
As part of operations, YULI collects, stores, and processes personal data of employees and clients. Therefore, YULI employees must diligently protect the confidentiality and security of any data to safeguard personal data privacy. When handling personal data, employees must ensure that such actions serve a legitimate business purpose and maintain transparency in how personal data is used, adhering to privacy statements.
4. 資料外洩
資料外洩是指蓄意或意外遺失、毀損、變更、未經授權披露或盜竊個人資料。資料外洩極容易發生,並且通常無法適當地辨識。通常我們以為資料被盜,才可能會發生洩露,但若有面臨任何資料外洩的風險可能,皆應向由里及其資訊合作夥伴報告。
Data Breaches
A data breach refers to deliberate or accidental loss, damage, alteration, unauthorized disclosure, or theft of personal data. Data breaches are highly probable and often difficult to properly identify. In case of any risk of data breach, whether perceived or actual, it should be reported to YULI and its information partners promptly.