Loading...

Data Security
Compliance Risk Management

Compliance System

Comprehensively identifying business risks, establishing sound response mechanisms, ensuring business stable development

Compliance Assurance

Risk Response System

We have established a comprehensive risk management system covering financial security, technical security, data compliance, technology export, financial cash flow, and market competition. Through systematic response measures, we ensure business operates steadily within the compliance framework.

Risk Management

Six Core Risk Responses

Aiming at risks that may be faced in various business links, we have formulated detailed identification and response plans

Financial Security Risk

Risk Identification
Financing guarantee, capital operation and other financial businesses must comply with Singapore MAS regulatory requirements. Unlicensed operation may face up to SGD 2 million fine and business suspension.
Response Measures
  1. Signing cooperation agreements with licensed financial institutions in Singapore (DBS Bank/OCBC Bank) to conduct business through agency mode
  2. Establishing standardized KYC/AML processes, customer identity verification coverage reaching 100%
  3. Setting guarantee limit red line, not exceeding 50% of company's net assets
  4. Withdrawing 10% of guarantee balance as risk reserve, conducting stress tests monthly

Technical Security Risk

Risk Identification
Cloud platform and computing power have technical security risks such as data leakage, network attack, and service interruption, which may lead to customer loss and reputation damage.
Response Measures
  1. Deploying zero-trust architecture, implementing multi-tenant isolated network, host encrypting application data
  2. Adopting TLS 1.3 transmission encryption and AES-256 storage encryption, keys automatically rotate every 72 hours
  3. Deploying T-level DDoS protection, AI-WAF and IDS and other security monitoring centers, establishing 24-hour security monitoring
  4. Formulating 99.99% availability guarantee plan, including dual-active data center and 30-minute RTO recovery mechanism

Data Compliance Risk

Risk Identification
Cross-border data transmission faces multiple regulatory requirements such as China's Data Security Law and Singapore PDPA. Violation may lead to up to SGD 10 million fine.
Response Measures
  1. Establishing data classification and grading standards, dividing into four levels: public, internal, sensitive, and confidential
  2. Deploying automatic data desensitization tools, anonymizing personal information exiting the country
  3. Signing standard data transmission agreements (DPA) with customers, completing China Cyberspace Administration security assessment for important data in advance
  4. Establishing non-personal data whitelist mechanism, realizing free flow monitoring and audit

Technology Export Risk

Risk Identification
AI/cloud computing technology may involve China export control, computing power service has risk of being identified as technology transfer, facing up to RMB 5 million fine.
Response Measures
  1. Introducing third-party institutions to conduct technology export compliance investigation, establishing "Export Control Technology Catalog" matching mechanism
  2. Applying for dual-use item export license in advance for customized technology services, conducting services after obtaining Ministry of Commerce approval
  3. Clearly defining computing power service boundaries, only providing API interface calls without involving code/models
  4. Establishing customer qualification review system, prohibiting providing services to sensitive countries/regions

Financial Cash Flow Risk

Risk Identification
Computing power procurement and regional expansion require large capital investment, there is risk of cash flow breakage, affecting business continuity.
Response Measures
  1. Implementing SGD 70 million cash flow plan, holding financial review meetings weekly
  2. Collecting 30%-50% advance payment from customers, computing power packages adopting 3/6/12-month prepaid mode
  3. Initiating financing connection 6 months in advance, locking 2-3 alternative investment institutions
  4. Introducing strategic shareholders providing SGD 80 million computing power credit line, alleviating procurement capital pressure

Market Competition Risk

Risk Identification
AWS, Alibaba Cloud and other giants accelerating Southeast Asia layout, may squeeze market space through price war, new entrants facing high customer acquisition cost.
Response Measures
  1. Focusing on China computing power overseas segment track, signing exclusive cooperation agreements with three major domestic cloud vendors
  2. Building compliance + cost differentiation advantages, computing power price 20%-30% lower than international vendors
  3. Establishing industry solution team, deeply cultivating financial technology/smart manufacturing vertical fields
  4. Implementing customer success plan, providing 7×24 localized technical support, renewal rate target exceeding 85%