Annual Report 2025

舜宇光學科技（集團）有限公司 • 2025 年報 109 Corporate Governance Report 企業管治報告 Group’s principal risks 本集團主要風險 Key controls and treatment plan(s) 主要控制及處理方案 Target risk trend 目標風險趨向 Data Breach Risks: 數據洩露風險： – Data leakage due to technical vulnerabilities, personnel operational errors, external malicious attacks and management defects may cause financial and reputational losses for the Company, and thus create legal risks and commercial competitive disadvantages. － 因技術漏洞、人員操作失誤、外部惡意攻擊及管理缺 陷等導致數據洩露，可能造成本公司財務及聲譽損 失，並因此產生法律風險和商業競爭劣勢。 – Benchmarking against the classification, grading, and labeling practices of leading companies, identifying gaps between existing management and benchmarks, and proposing improvement plans; － 對標頭部企業分類分級和標密工作開展情況，輸出對標與現有 管理存在的差距及改善方案； – Exploring online management tools for data asset classification, grading, and labeling, and providing comparative solutions and recommendations; － 探索數據資產分類分級和標密線上化管理工具，並輸出對比方 案及傾向建議； – Investigating the current state of internal data asset management, and developing secure and reasonable operational rules suitable for the Group based on benchmarking management solutions; and － 調研內部數據資產管理情況，結合對標管理方案輸出適合本集 團的數據管理安全、合理的操作規則；及 – Conducting a comprehensive review of data asset management in accordance with the previously established operational rules, producing a report on implementation issues and corrective actions, and simultaneously optimizing system documents and related rules. － 依據前期操作規則，對數據資產管理進行全面審查，並輸出落 地執行問題與整改報告，同步優化體系文件及相關規則。