Page 116 - Annual Report 2014
P. 116
Whistle Blowing Policy The Employee Code of Conduct and the Supplier and Vendor Overview
StarHub takes a zero tolerance stance towards fraud and ethical Policy are available on StarHub’s intranet, while the Ethics Policy
violations. As such, the Group has instituted a robust procedure for and the Corporate Gift and Hospitality Policy are available on both Strategy
the purpose of providing third parties and employees with accessible StarHub’s intranet and corporate website for easy access.
channels for reporting suspected fraud, corruption, financial Performance
impropriety, unethical conduct and other criminal or dishonest Compliance Leave Policy
practices. Such channels include the employees’ immediate StarHub has a Compliance Leave Policy which applies to Governance
supervisors, the relevant Heads of Department or the Head of employees who hold Senior Manager position and above, finance
Human Resource (as may be appropriate), as well as the AC. advocates and employees with sensitive job functions such as Financials
handling monies, inventories, payroll processing and approvals,
The Investigation Committee (constituting representatives risk management and purchasing of goods and services. Under
from the Senior Management) will investigate the suspected the Compliance Leave Policy, such employees are required to go
wrongdoing and implement rectification and prevention on mandatory block leave of at least five consecutive working
measures. Any personnel with a conflict of interest (actual or days each calendar year. This arrangement allows covering
potential) will be barred from appointment to the Investigation officers to fully step into the duties of the employee on leave, as
Committee. All cases of wrongdoing will also be reported to and an additional check and balance against any breaches. This is
reviewed by the AC. an additional risk mitigation measure voluntarily put in place to
enhance governance.
In cases of suspected wrongdoing involving the CEO and/or CFO,
the Investigation Committee will be chaired by the AC Chairman Document Classification Policy
(or his nominee). Upon completing the investigations for each StarHub has a document classification policy to guide employees
case of suspected wrongdoing, the Investigation Committee may in their handling of information and documents relating to the
at its discretion decide whether to circulate the findings of the Group’s business, activities and operations. Such information and
investigations to all employees, taking into account the interests documents are required to be classified as “Confidential”, “For
of the Group. Internal Use” or “For Public Distribution”. This classification helps
to safeguard the information and documents, ensures that only
The Group’s whistle-blowing policy aims to encourage the appropriate persons have access to that information and that
reporting of such matters in good faith, by lending confidence access is on a need-to-know basis only.
that whistle-blowers will be treated fairly and accorded with
protection against reprisals. StarHub will take disciplinary action Strategic Business Continuity
against any party who victimises whistle-blowers. Further, Management (BCM)
StarHub does not disregard anonymous complaints but will give StarHub was the first Info-Communications company in Singapore
such complaints appropriate weight. The Group’s whistle-blowing to be successfully certified to Singapore Standards SS540: 2008
policy is available on StarHub’s intranet and corporate website for for Business Continuity Management (BCM) in May 2011. In May
easy access by all employees and members of the public. 2014, StarHub successfully converted to ISO 22301:2013 which
is the ISO standard for BCM. StarHub’s BCM program focuses
Employee Code of Conduct and Rules on on Info-Communications Network, Infrastructure and Support
Business Conduct Services for Mobile, Television, Broadband and Fixed. The BCM
To guide employees in carrying out their duties and program is also supplemented by Pandemic Plan, Haze Response
responsibilities with high standards of personal and corporate Plan and Crisis Communication Plans to ensure StarHub is able to
integrity when dealing with StarHub, its competitors, customers, address different crisis situations.
suppliers and the community, StarHub has the following in place:
Security Measures for Data Protection
• StarHub’s Employee Code of Conduct; In addition to the Laptop Encryption Solution, StarHub has
• Ethics Policy; implemented Mobile Device Management (MDM) to ensure
• Corporate Gift and Hospitality Policy; and commercially sensitive and confidential corporate emails and
• Supplier and Vendor Policy. information accessed by employees using their mobile devices
are protected. In the event an employee’s mobile device is
StarHub’s Employee Code of Conduct, the Ethics Policy and the lost or stolen, MDM will remove corporate data stored on the
Corporate Gift and Hospitality Policy cover business conduct mobile device by performing a remote factory reset. Both the
(including employees’ compliance with anti-corruption and anti- Laptop Encryption Solution and the MDM enhance the security
bribery laws), conduct in the workplace, protection of StarHub’s of StarHub’s commercially sensitive and confidential corporate
assets, proprietary and confidential information and intellectual data accessed through or stored on such mobile devices and
property, conflict of interest, non-solicitation of customers and laptops by employees. On an on-going basis, StarHub continually
employees, and workplace health and safety. In parallel, the evaluates new technologies which may further enhance the
Supplier and Vendor Policy covers internal controls on tenders, security of its confidential and sensitive information. StarHub
vendor selection and purchasing to ensure transparency, has put in place a comprehensive Personal Data Protection
objectivity and compliance. compliance program to ensure compliance with the law.
StarHub Ltd | Annual Report 2014 113
