494.9 Internal AuditThe internal audit unit operates as an independent entity directly reporting to the board of directors. Audit personnel maintain a stance of impartial independence and carry out their duties with objectivity and professional diligence. The appointment and dismissal of the internal audit manager are subject to the approval of the Audit Committee and subsequent resolution by the board of directors.The audit work is carried out according to the audit plan approved by the board of directors. The internal audit unit regularly reports its audit activities to the Audit Committee and attends board meetings. Monthly, audit reports are delivered to the independent directors, and special audits are conducted as needed. The audit plan is developed based on identified risks.Additionally, each internal unit is required to conduct an annual selfassessment of the effectiveness of their internal control systems. The internal audit unit reviews these self-assessments and examines improvements made in response to any internal control deficiencies or anomalies discovered by the audit unit. This information serves as a primary basis for the board of directors and the general manager to evaluate the overall effectiveness of the internal control system and to prepare the internal control system declaration.According to this year's audit plan, the 2023 audit activities have been completed, and no significant anomalies were found.%u2022 Maintain the confidentiality** of information assets, ensuring that accessis appropriately authorized and protecting the privacy of information andbusiness operations.%u2022 Ensure the integrity** of internal business data by preventingunauthorized access and modifications.%u2022 Guarantee the continuity** of business operations by maintaining theavailability of information services.%u2022 Ensure compliance** with relevant laws and regulations pertaining toinformation business activities.BBIOTEQUE CORPORATION2023 Sustainability Report4.10 Information Security PolicyTo enhance the company's information security management and ensure the safety of data, systems, and networks, a dedicated information security unit%u2014the Information Security Office%u2014has been established. This unit includes an information security officer and a staff member, responsible for planning and executing information security matters. The information security officer reports significant issues or plans to the board of directors at least once a year.( %u4e00 ) Information Security Policy