Information Security Policy

This Information Security Management System (ISMS) is designed to protect the information assets (Information Assets) of Bison Advanced Technology Co.,Ltd. (hereinafter referred to as the Company). And through the establishment of procedures, we can reduce the incidence of information security incidents and shorten the response time of incidents, so as to minimize tangible and intangible damage to ensure the company's sustainable operations. Therefore, the information security policy is formulated as the highest guiding principle of the company's information security management system to ensure the confidentiality, integrity, and availability of information assets and comply with the requirements of relevant laws and regulations to reduce the risk of information security risks, thereby protecting the rights and interests of information system service users and meet the following goal：

1.Ensure that the company’s information assets have sufficient confidentiality, integrity and availability.

2.Effectively identify, assess and handle information security risks by establishing, implementing, maintaining and continuously improving the ISMS, and adopt appropriate information security control measures to protect information assets.

3.Establish an effective information security contingency plan to respond to the occurrence of information security incidents.

4.Establish an effective information security review mechanism to continuously improve the performance of ISMS.

5.Ensure that the company complies with laws and standards related to information security.

6.Improve the information security awareness and capabilities of relevant personnel.