Risk Management
Ardentec formulated various risk assessment and operation specification to manage risks. The President or appointed management representatives regularly review the various risk management results and formulate the improvement plans to ensure the continuous perfection of the risk management effectiveness. The performance of risk management report to the Board of Directors annually.
-
Financial Risk
-
Labor and Human Rights Risk
-
-
Business Ethics Risk
-
Safety Risk
-
-
Information Security Risk
-
Climate Change Risk
-
Financial Risk
Focusing solely on the semiconductor testing business and not engaging in any high-leverage or high-risk investments. Ardentec and its subsidiaries all implement a stringent approach towards financial and financial market management; we also control our operations and profit risks at all times and further coordinate in devising strategies to accommodate changes in the industrial economy, financial market, and ultimately deliver stable semiconductor testing business performance and earnings.
-
Labor and Human Rights Risk
Formulating the "Labor and Human Rights Risk Management Procedures", we evaluate potential labor and human rights risks on an annual basis. For items with a high risk level, we formulate and implement control measures, and for items with a risk level above (inclusive) "medium", we set it as an annual target and submit it to the ESG Sustainable Operation Committee for review on a regular basis.
Formulating the “Human Rights Protection Specification” to ensure that workers are under proper human rights protections.And there is “Specific Fixed-term Contract Worker Recruiting Agent Management Specification” to ensure foreign workers’ human rights protections. Protective operation of our Company to check the recruitment process of all labor recruited abroad. Each year, we audit domestic and foreign agencies to confirm that employees do not have any human rights risks in the recruitment process.
Formulating the“Grievance and Reporting Regulation”, and we have multiple grievance and reporting channels announced within the company and on the official website, both internal and external parties can report with names or anonymously. -
Business Ethics Risk
Establishing a “Business Ethics Risk Management Procedure” to identify potential risks in business ethics by functional departments annually, setting annual goals following identified items comparatively high risk levels include Key Performance Indicators (KPI), establishing and conducting control measures. ESG Sustainability Operation Committee reviews the performance on a regular basis. The existing control measures can properly control risks, so there have been no violations of business ethics.
All the indirect employees are required to make a “conflict of interest declaration” every year, and the subjects of the declaration include employees and family members within the second degree of kinship. Family members whose business are declared to be related to the Company’s operations, they are all subject to recusal and appropriate prevention management measures. -
Safety Risk
Environmental Measurement/ Hazard Identification and Risk Assessment Procedure” was in place to identify the existing characteristics and risk level of causes that may possibly result in staff injuries, illnesses, loss of property, damages to the work environment, or the combination of any of the aforesaid latent risks, for the reference of continuous improvement decision for the safety and health policy, goals and management plan.
“Emergency Response Plans” will be composed according to “Emergency Response Control Procedure”, which provides response measures for typhoons, earthquakes, and other natural disasters. Each site area has its own emergency response team in place and holds regular emergency response drills and fire evacuation drills to develop employees' responsiveness to emergencies and raise their safety awareness which ultimately reduces the risk of accidents during disasters.
Through ISO 45001 certification, headquarters and all of its subsidiaries manage the safety-related risks effectively with an international management system. -
Information Security Risk
Security management systems are established through international standard management systems to assess security risks. Through the implementation of risk assessment, corresponding systems are developed to reduce safety risks in the Company. Sensitive data protection is performed from various management system aspects, including information management, information level classification, authorization management, and control measures for monitoring the use of sensitive data, as well as from physical and personnel security aspects, including confidentiality agreements, employee exit process, authorization control of restricted areas, and information technology (including network architecture and information security) and product data protection. Regular security management meetings, continuous monitoring of security management, security incident notification and emergency response mechanism, annual education training and dissemination (including security awareness and security policy dissemination), internal and external audits and reviews, and vulnerability scanning and penetration testing are used to maintain and continuously improve the effectiveness of the security of sensitive information protection and IT information system architecture.
In 2022, there were no major information security incidents at Ardentec's headquarters or its subsidiaries that resulted in the leakage of the Company's or customers' data, nor were there any major information security incidents such as large-scale infections of malware that affected production equipment and capacity.
-
Climate Change Risk
Procedures for identifying, assessing and managing climate change risks and opportunities are established in accordance with the framework of Task Force on Climate-related Financial Disclosures (TCFD). In principle, risk/opportunity identification is conducted every three years, and the results are analyzed financially for management and decision-making purposes.