ITEM 1C. CYBERSECURITY

 

Risk Management and Strategy

 

The Company recognizes the critical importance of developing, implementing, and maintaining robust cybersecurity measures to safeguard our information systems and protect the confidentiality, integrity, and availability of our data. We have developed the following processes as part of our strategy for assessing, identifying, and managing material risks from cybersecurity threats.

 

Managing Material Risks & Integrated Overall Risk Management

 

We have integrated cybersecurity risk management into our risk management processes. This integration is intended to ensure that cybersecurity considerations are part of our decision-making processes. We continuously evaluate and address cybersecurity risks in alignment with our business objectives and operational needs.

 

Engaging Third-parties on Risk Management

 

Recognizing the complexity and evolving nature of cybersecurity threats, we engage with external experts, including cybersecurity assessors, consultants, and auditors, in evaluating and testing our risk management systems. These service providers enable us to leverage specialized knowledge and insights, ensuring our cybersecurity strategies and processes remain at the forefront of industry best practices.

 

Overseeing Third-Party Risk

 

Because we are aware of the risks associated with third-party service providers, we implement processes to oversee and manage these risks. We conduct thorough security assessments of all third-party providers before engagement and maintain ongoing monitoring to ensure compliance with our cybersecurity standards. The monitoring includes regular assessments by our Chief Operating Officer. This approach is designed to mitigate risks related to data breaches or other security incidents originating from third parties.

 

Risks from Cybersecurity Threats

 

We have not encountered cybersecurity challenges that have materially affected or are reasonably likely to materially affect us, including our business strategy, results of operations, or financial condition.

 

Governance

 

Board of Directors Oversight

 

Our board of directors oversees the management of risks associated with cybersecurity threats.

 

Management’s Role Managing Risk

 

Our management team, including our Chief Operating Officer, is responsible for assessing and managing our material risks from cybersecurity threats. Our Chief Operating Officer has primary responsibility for our overall cybersecurity risk management program and supervises all external cybersecurity consultants. Our Chief Operating Officer has experience supervising and managing company security and privacy departments.

 

 

Monitoring Cybersecurity Incidents

 

Our management team supervises efforts to prevent, detect, mitigate, and remediate cybersecurity risks and incidents through various means, which may include briefings from external security personnel; threat intelligence and other information obtained from governmental, public or private sources, including external consultants engaged by us; and alerts and reports produced by security tools deployed in the IT environment.

 

Reporting to Board of Directors

 

Significant cybersecurity matters, and strategic risk management decisions, will be escalated to the board of directors.

 

Back SEC Filing Thank you for subscribing