Respecting freedoms and human rights is the fundamental idea of our security practices We integrate security and human rights management into our ESG strategic planning and operational activities and abide by the Voluntary Principles on Security and Human Rights (VPs).
Guided by the ISO 31000 risk assessment process, we have assessed the implementation of baseline security risk standards and risk levels for our projects against security risk assessment models recognised by the international security industry, as well as elements set by international security experts, and formulated corresponding mitigation and alleviation measures. We have formulated the Security and Human Rights Policy, the Guidelines on the Principles of the Use of Security Force Overseas, the Guidelines on Security Facilities and Security Forces for Overseas Projects, and other security management policies, baseline security standards, and crisis management plans.
We use the public opinion monitoring platform and the risk intelligence platform to collect, process, analyse, and generate risk intelligence, in order to issue timely security risk alerts to employees stationed at overseas projects, as well as employees in international business trips, and carry out travel risk management. At the same time, they also provide objective and credible design benchmarks for the design of security systems, as well as viable intelligence for management decisions.
The project security risk assessment (SRA) is a comprehensive assessment of assets, threats, risks, and security weaknesses of the project site.Based on the implementation of the baseline security standards, the SRA will identify the special risks faced by a specific project and the weaknesses in the existing PPS. SRA will sort out the priorities of the risks to be addressed, give risk mitigation advice, and put in place extra security measures, so as to reduce the risks faced by the project as low as reasonably practicable.
The overall process of the SRA shall be guided by ISO 31,000 and carried out with the security risk assessment model recognized by the international security industry and the elements specified by international security experts. The evaluation is conducted by personnel or security providers with professional qualifications.
All overseas subsidiaries whose security work is led by Zijin shall comply with the following project security risk assessment process:
We regularly conduct internal audits and on-site inspections to assess the compliance and implementation of security policies and related regulations by our subsidiaries.During the audit process, on-site security inspection may be conducted when the conditions permit based on the actual risk level and priorities.
The process and frequency of on-site inspection shall be based on the level of the threats and risks faced by the sites. Projects in moderate- and high-risk countries/regions shall be inspected every month. We will carry out regular inspections of security personnel, processes, and equipment, and record non-compliance with regulations/standards. The following aspects shall be recorded in the inspection report: