1、信息安全管理方針：強化人員認知，避免資料外洩，落實日常運維，確保信息保密、完 整、可用。Information Security Management Policy: Strengthen personnel awareness, avoid data leakage, implement daily operations and maintenance, and ensure information confidentiality, completeness, and availability.
2、信息安全管理目標 Information security management objectives
   ①　確保信息安全教育訓練，加強員工信息安全意識與提高員工信息安全保密和防範能力;Ensure information security education and training, strengthen employee information security awareness, and improve employee information security confidentiality and prevention capabilities;
   ②　商業秘密信息洩漏事故小於等於1次/年；Trade secret information leakage accidents are less than or equal to once per year;
   ③　信息系統故障影響訂單業務運行的年累計時長不能超過30小時（正常變更期間除外）。The cumulative annual duration of the impact of information system failures on the operation of order business cannot exceed 30 hours (excluding normal change periods).
   ④　引起公司信息系統業務中斷事故發生次數小於等于2次/年（中斷時長超過12小時）The number of incidents causing business interruption in the company's information system is less than or equal to 2 times per year (interruption duration exceeding 12 hours)
   ⑤保護本公司業務活動信息，避免未經授權的存取與修改，確保其正確完整。Protect our company's business activity information, avoid unauthorized access and modification, and ensure its accuracy and completeness.