ESG Report 2021

Regarding employees, the employee confidentiality employees should bear his/her confidentiality system implemented by the Group requires all the obligations for three years after resignation. On the employees to bear confidentiality obligations on our other hand, when cooperating with suppliers, business secrets such as information on technology customers and other partners, the Group shall sign and operation, and not to allow any third parties to confidentiality agreements with them to ensure that know our business secrets in form of disclosure, the information of both parties are not disclosed, release or publishing. In order to further secure the and the privacy rights are not infringed. interests of the Group and stakeholders, all Privacy Protection In the process of business operation, the Group's of patients' information management, the Group has employees of various departments will be in contact created a mobile office platform “Smart United with different personal information such as Laboratories”which integrates a variety of information of customers, shareholders, employees functions. Among them, big data management and employment candidates, thus there is a risk of allows data utilisation and analysis to be mobilised personal information and privacy leakage. In order to and fully popularised among staff. The patient data reduce the relevant risks, the Group has formulated micro-file system effectively strengthens patient The United Laboratories Patient Information data management, making it easier for customers to Protection System and The United Laboratories pay return visits and use information more securely. Information Confidentiality System to ensure the The Group's Information Centre will manage and Group legally obtains and uses personal information, maintain the platform system and take different protects the legal rights and interests of information management measures to prevent leakage or providers, as well as prevents the risks incurred from destruction of patient information, such as improper management of personal information. The managing access rights for patient information system has regulated the methods on collection, personnel, and strengthening network security to use, transmission and storage of personal prevent cyber attacks and intrusion of personal information, lowered the risks of employees violating information database. Patient information is stored relevant laws when processing personal information, in the platform system according to the length of and avoided bringing negative impacts to after-sales service and expired information will be stakeholders. destroyed by the Marketing Department, in which the process is monitored and documented by In order to improve the efficiency and effectiveness dedicated personnel. PANDEMIC PREVENTION AND CONTROL The Group has always put the safety and health of on the Prevention and Control of the Novel our employees first. We established various Coronavirus Disease”. Knowledge and requirements pandemic prevention measures since the resumption on prevention are included to allow of work to maintain effective infection control employees effectively carry out the anti-pandemic internally while supporting the society's anti- work. The Group's major production plants have also pandemic work. The Group's Quality Inspection done multiple work according to their needs for Department published the “General Requirements prevention, such as sanitizing, promotion by the Quality Inspection Department on the and monitoring to protect the health and safety of Prevention of the Coronavirus Disease” and employees comprehensively and effectively. “Handbook by the Quality Inspection Department pandemic pandemic 55 Environmental, Social and Governance Report 2021 The United Laboratories International Holdings Limited