SUSTAINABI L I TY AT RANHI LL Sect ion 04 21 SUSTAINAB I L I TY Report 2022 SUSTA INAB I L I TY GOVERNANCE STRUCTURE The Group Whistleblowing channel comes under the purview of Group Corporate Assurance Department (“GCAD”). All whistleblowing reports will be investigated impartially with the findings presented to Audit Committee. Anyone wishing to make a whistleblowing report can do so via the following channels: In addition, specific whistleblowing channels have been established, handled by a third party to ensure independence and transparency with their respective investigation and reporting processes. If allegations are proven true, action will be taken against the perpetrator including internal disciplinary proceedings or if appropriate, reported to the enforcement authorities for further action. In FY2022, zero whistleblowing cases were reported. POLITICAL VIEWS AND CONTRIBUTIONS Ranhill remains an apolitical organisation and does not favour, promote or support any political party. However, the Group from time to time may participate in charitable or nation-building events organised by the government of the day or its ministries and agencies. The Group may also support Corporate Social Responsibility (“CSR”) events or programmes that could see the involvement of political parties or politicians. As provided for in the laws of the country and Ranhill’s commitment to freedom of association, employees, have the right to join or support political parties of their choosing or any civil society or NGO, so long as these entities are recognised by law to be legal. The Group supports the rights of citizens to vote in accordance to their conscience. DATA PRIVACY AND SECURITY Ranhill’s operating companies manage large amounts of data, a significant amount of which is confidential in nature. For example, Ranhill SAJ, as the Johor state’s water operator, manages millions of residential and commercial customer accounts. Such accounts would inevitably contain personal data such as national registration identification card numbers, home addresses, phone numbers and other data. Ranhill’s management of data is based on the Personal Data Protection Act (“PDPA 2010”). All confidential data is collected only with the consent of data owners and such data is only used for the purpose of the engagement with said customer. Data is collected with the data owner’s full awareness that such data is being collected by Ranhill and may be used for internal purposes as agreed by the customer. Ranhill SAJ’s Customer Service Department has been certified to the ISO27001:2013 Information Security Management System standard. This attests to the department’s systematic and secure approach to managing customer information. Data is not disclosed to third parties unless officially requested by enforcement authorities such as the police department or the government. Ranhill continues to perform systems hardening to step up protection of ICT security systems and databases. There have been zero cases of data breach throughout Ranhill’s operations. Website: www.we-care.my Telephone/Hotline: 1700-81-5333 Email: whistle@we-care.my Letter: a) PO Box 11258, 50740 Kuala Lumpur b) Head, Group Legal & Compliance, Ranhill Utilities Berhad, Bangunan Ranhill SAJ, Jalan Garuda, Larkin, 80350 Johor Bahru, Johor Darul Takzim
RkJQdWJsaXNoZXIy ODQxNzg=