Make data security and privacy protection an important responsibility for corporate operations. At the institutional level, we have formulated the "Online Information Security Management System", "Information Security Management Organizational Structure and Responsibilities", "Online and Information Security Incident Emergency Response Plan", "Office Terminal Security Network Access Management Specifications" and "Data Classification and Hierarchy Security Management Specifications" (Trial version)" and other information security and data protection systems, we are committed to building a comprehensive data protection and information security management system covering all business areas.

We conduct professional audits of the Group's information systems and information security systems through third-party independent institutions every year to comprehensively identify and assess potential risks, and actively promote rectification and improvement based on the audit results, thereby continuously strengthening the Group's information and data security defense lines. .

We continue to carry out information security maintenance and improvement work from the three dimensions of computer security, online security and data security, deploy a data security protection platform, and adopt passive protection measures such as terminal security management, unified identity management, zero trust access control and data leakage prevention. Every effort is made to prevent data breaches and other information security incidents to ensure that the likelihood of their occurrence is minimized.