EFG Hermes KSA is committed to maintaining and improving information security within the Company and minimizing its exposure to risks. It is therefore Company policy to ensure that:

• Information security is a business objective for Hermes management and staff members.
• Hermes mangement and staff are commited to strict adherence to its information secuirity policies and practices. All managment and staff personnel are required to comply with relvant Security Policies, procedures and organization.
• Violation of information Secuirity Policies, Procedures, and standards shall result in disciplinary actions by managment up to and including termination as local laborlaws permit.
• The confidentiality of corporate, client and customer information will be assured;
• Sensitive information (however stored) will be protected against unauthorized access;
• The integrity of information will be maintained.
• Information will be made available to authorized business processes and employees when required;
• Regulatory and legislative requirements will be met.
• Business continuity plans for mission critical activities will be produced, maintained and tested;
• Information security training will be made available to all staff.
• All breaches of information security, actual or suspected, will be reported to and investigated by Company security personnel.