Go to Main SiteTH
INTERLINK Group - ESG Sustainability | ilink esg | esg ilink | sd ilink | sd interlink
Sustainability
Cybersecurity | INTERLINK ESG Sustainability

Cybersecurity

Protecting Information and IT Systems

We place the highest priority on information and IT system security to protect customer, employee, and organizational data from cyber threats.

0

Personal data breach complaints

2/2 times/year

PDPA and cybersecurity training sessions

Cybersecurity and Personal Data Protection Policy

The company develops and enforces strict cybersecurity and personal data protection policies by enhancing threat prevention and monitoring systems, ensuring data processing compliance with the Personal Data Protection Act (PDPA), and establishing systematic data breach management plans.

Combined with continuous employee awareness building to prevent data risks, enhance stakeholder confidence, and support stable, secure, and sustainable long-term business operations.

Cyber Threats: Digital Age Challenges

The company recognizes challenges from increasingly complex cyber threats in the digital age, including system attacks, unauthorized data access, and critical data leaks that may impact business operations and stakeholder confidence.

Therefore, the company establishes systematic cybersecurity policies and practices covering information system risk assessment, threat prevention and monitoring, Incident Response management, and high-performance IT infrastructure development.

Additionally, the company aims to enhance system readiness for Business Continuity, reducing risks from system downtime, data theft, and malware by strengthening data protection measures across all business units to ensure information system security and sustainable business confidence.

Personal Data Protection

The company prioritizes protecting personal data of employees, shareholders, partners, customers, and all stakeholder groups by collecting, using, disclosing, and transferring data under principles of security, appropriateness, and business necessity.

The company establishes personal data protection policies and practices aligned with the Personal Data Protection Act (PDPA), overseeing work processes, access rights control, and systematic data incident management.

In 2025, the company had no complaints or incidents of customer personal data breaches, reflecting the effectiveness of strict and continuous data control and governance measures.

Building Cyber Immunity for Organizational Stability

PDPA and Cybersecurity Training Program

The company prioritizes building PDPA and cybersecurity knowledge among employees at all levels to raise operational standards and reduce digital threat risks. Regular training covers key topics including:

PDPA and cybersecurity training session
Cybersecurity training participants

Principles and requirements under the Personal Data Protection Act (PDPA)

Guidelines for collecting, using, disclosing, and transferring personal data correctly

Managing Data Subject Rights

Preventing cyber threats such as Phishing, Malware, and Ransomware

Cyber Hygiene practices and maintaining information system security

Additionally, the company establishes internal practices and control measures so employees can effectively apply knowledge in daily work, reduce data leakage risks, and build a sustainable organizational culture around data security.