Sustainability Practices
The following outlines the Group’s policies and practices underpinning our sustainability commitments.
Expand All
Code of Conduct
This Code of Conduct (the “Code”) comprises a set of rules adopted by HKT’s Board of Directors and applies to all employees, including directors and officers, across the HKT Group.
This Code is established to set out the important principles to achieve and to adhere to high professional standard and ethical behaviour in all aspects of its business, and to ensure that its affairs are conducted in accordance with applicable laws and regulations, as well as taken into consideration of social and environmental needs for achieving sustainable business and strategic long-term success.
Click here to download the Code.
This Code is established to set out the important principles to achieve and to adhere to high professional standard and ethical behaviour in all aspects of its business, and to ensure that its affairs are conducted in accordance with applicable laws and regulations, as well as taken into consideration of social and environmental needs for achieving sustainable business and strategic long-term success.
Click here to download the Code.
Corporate Social Responsibility Policy
This policy comprises a set of rules adopted by the Executive Committee and applies to all employees, including directors and officers, throughout the Group. This policy is intended to be a clear and simple guide to set out standards for the way in which we should conduct our business to minimise negative impact on society and the environment. Click here to download the policy document.
Supply Chain Management
HKT upholds the highest ethical and professional standards when dealing with suppliers and contractors. It is our objective to reduce environmental and social risks in our supply chain. The Group has in place the Group Purchasing Policy and Principles (GPPP), Supplier Code of Conduct and Anti-Bribery and Corruption Policy to facilitate our suppliers and contractors’ understanding of our practices. We also communicate with them regarding their compliance with Occupational Safety & Health, and environmental regulations.
Incident Management
Our Operational Committee is responsible for providing leadership, strategic direction, and clear communication in the handling of incidents. It ensures a consistent and coordinated response, supported by the Corporate Incident Response Team, which comprises members of senior management across various business units and function units.
Our incident management approach, underpinned by disciplined governance, integrates proactive monitoring with rapid, structured reactive response to uphold the highest standards of service reliability.
Proactive measures
Continuous real-time network surveillance enables early identification of related issues, including business disruptions, cybersecurity threats, and privacy and data breaches. By detecting risks swiftly, we can proactively prioritise and address them, ensuring minimal disruption and safeguarding business continuity.
Reactive measures
Our reactive measures emphasise robust incident management, ensuring incidents are immediately escalated to the appropriate teams and management levels, followed by root cause investigation, and coordinated cross-functional resolution. Post-incident reviews and scenario-based training allow us to continually refine our processes by incorporating lessons learnt from each event.
Handling of Personal Data Breaches
We respect and value all personal data provided by different individuals, in particular, our customers. A holistic approach has been adopted in personal data protection, including without limitation, appointment of a Personal Data Protection Officer, data access controls and adoption of security measures as detailed under the relevant internal policies and guidelines. As such, if for some unfortunate reasons data breach occurs, a robust and comprehensive mechanism will be implemented to handle the data breach incident abruptly and professionally, following the aforesaid incident management approach, with a view to containing the situation seamlessly and minimising any impact on the affected individuals.
Our incident management approach, underpinned by disciplined governance, integrates proactive monitoring with rapid, structured reactive response to uphold the highest standards of service reliability.
Proactive measures
Continuous real-time network surveillance enables early identification of related issues, including business disruptions, cybersecurity threats, and privacy and data breaches. By detecting risks swiftly, we can proactively prioritise and address them, ensuring minimal disruption and safeguarding business continuity.
Reactive measures
Our reactive measures emphasise robust incident management, ensuring incidents are immediately escalated to the appropriate teams and management levels, followed by root cause investigation, and coordinated cross-functional resolution. Post-incident reviews and scenario-based training allow us to continually refine our processes by incorporating lessons learnt from each event.
Handling of Personal Data Breaches
We respect and value all personal data provided by different individuals, in particular, our customers. A holistic approach has been adopted in personal data protection, including without limitation, appointment of a Personal Data Protection Officer, data access controls and adoption of security measures as detailed under the relevant internal policies and guidelines. As such, if for some unfortunate reasons data breach occurs, a robust and comprehensive mechanism will be implemented to handle the data breach incident abruptly and professionally, following the aforesaid incident management approach, with a view to containing the situation seamlessly and minimising any impact on the affected individuals.