Information Security Management System (ISMS) General Policy

In accordance with the Information Security Management System (ISMS) general policy of PT Indonesia Commodity & Derivatives Exchange to promote information security, the management of PT Indonesia Commodity & Derivatives Exchange hereby declares that the management fully supports the planning, implementation, and maintenance of the ISMS standard ISO/IEC 27001:2022. The commitment with respect to the ISMS will be denoted by:

1. Ensuring the information security and the objectives are established and compatible with the organization's strategic direction.

2. Ensuring the integration of the ISMS requirements into the organization’s processes.

3. Ensuring that the resources needed for the ISMS are available.

4. Communicating the importance of effective information security management and conforming to the ISMS requirements.

5. Ensuring that the ISMS achieves its intended outcome(s).

6. Directing and supporting people to contribute to the effectiveness of the ISMS.

7. Ensuring continual improvement.

8. Supporting other relevant management roles to demonstrate their leadership as it applies to their areas of responsibility.