The Management and all employees of PT Tibeka Logistik Indonesia are committed to ensuring business continuity and minimizing business losses by protecting information security against threats to its confidentiality, integrity, and availability, as well as ensuring compliance with applicable security standards. To achieve these objectives, the Company hereby commits to:

1. Promoting information security activities and preventing information security incidents by implementing information security management in accordance with the ISO 27001:2022 standard.
2. Identifying, assessing, monitoring, and reviewing risks, which are used to plan and implement effective security measures and evaluate relevant internal and external issues.
3. Conducting security awareness training and socialization to enhance the understanding of the importance of information security.
4. Enforcing compliance with laws and regulations related to information security, as well as the application of sanctions for violations, which will be processed in accordance with Company provisions.
5. Performing continuous improvement and ongoing enhancement regarding the implementation of the Information Security Management System.

This Information Security Management System Policy is communicated and disseminated to all employees, customers, and business partners to be obeyed and implemented.