Skip to content

GOVERNANCE

Privacy and Data Protection

In FY2025, Masteel continue to record zero complaints or incidents relating to data breaches or the leakage of employee and customer information, demonstrating our continued commitment to data privacy, cybersecurity protection and regulatory compliance, while reinforcing stakeholder confidence. Recognising that cyber threats may affect business continuity and operational resilience, Masteel has established a comprehensive Personal Data Protection Policy. The policy defines the categories of personal data collected, permitted uses within our operations and the rights of employees to raise concerns regarding their information. To ensure accessibility and understanding, the policy is incorporated into the Employee Handbook and made available in multiple key languages. 

Furthermore, our Information Technology (“IT”) Policy serves as a critical pillar in managing the Group’s IT systems securely. This policy includes stringent cybersecurity protocols, such as:

  • Enforcing strong access controls to prevent unauthorised access. 
  • Implementing mandatory lock screens and password protection on company devices. 
  • Deploying antivirus software and conducting regular security audits. 
  • Ensuring proper data storage and backup management to mitigate the risks of cyber threats

Data Security and Backup Protocols

We at Masteel carefully balances the adoption of cloud technology with data confidentiality and integrity by conducting regular system assessments and security updates. To prevent data loss, the Information Technology Policy mandates:

 

a. Weekly data backups by Department Managers to external hard disks.

b. Storage of backup media in designated secure locations, separate from employees’ workstations.
c. Clear labelling of storage devices with the statement: “Property of Masteel” to prevent unauthorised access or removal.
d. Controlled access to external storage media, ensuring that no device is removed without proper authorisation.

 

These measures are designed to maintain operational resilience, reduce downtime, and safeguard productivity in the face of cybersecurity threats. By integrating robust cybersecurity governance with scenario planning and response strategies, Masteel remains committed to upholding industry best practices and enhancing our sustainability resilience.