Information Security and Privacy Protection
Emergency Response to Cybersecurity Incidents
The group has formulated the Genertec Universal Medical Group Limited Network and Information Security Emergency Plan specifically for emergency response to cybersecurity incidents. Each year, it participates in cybersecurity drills organized by the Ministry of Public Security, where it responds to external attacks and various information security incidents received during the drills and produces a Security Incident Report. The report requires the closure of each security incident by rectifying it within a specified time frame.
In 2023, the Third Research Institute of the Ministry of Public Security conducted a cybersecurity classified protection assessment on the General Technology Cloud (medical resource pool). Additionally, a total of 1 network and information security training session, as well as 1 cybersecurity drill and simulated attack, were organized to enable employees to respond to various cybersecurity threats in a simulated environment, thereby enhancing their awareness of cybersecurity and data protection.
Customer Privacy Protection Policy
Universal Medical attaches great importance to privacy security, respecting and protecting the personal privacy rights of all users of its services, and treating all personal information with caution. The group has integrated its "Privacy Policy" into risk and compliance management, formulated privacy agreements, and standardized procedures for information collection, use, disclosure, storage and exchange, as well as information security assurance. For detailed information, please refer to our Privacy Agreement , which includes the methods of information collection, purposes of information use, disclosure, storage and exchange rules, among other contents.
