CapitaLand Malaysia Mall Trust | Annual Report 2020

Material Risk Details Key Mitigating Action Information Technology/ Cyber Security › Ongoing business digitalisation exposes the business to IT-related threats, which may result in compromising the confidentiality, integrity and availability of CMMT Group’s information assets and/ or systems. This may have negative impact to customer experience, financials and/or regulatory compliance › Execute CapitaLand’s Cyber Security Strategy through ongoing review against existing/evolving threat landscapes and institute measures to minimise vulnerability exposure and manage threat vectors › Roll out ongoing staff IT Security Awareness Training to counter human intervention in the information security chain › Maintain and test IT Security Incident Management Procedure to ensure prompt response and timely remediation to cyber security incident › Engage independent security service providers to conduct vulnerability assessment to further strengthen the IT systems. › Conduct annual Disaster Recovery Plan (DRP) exercise to ensure timely recoverability of business-critical IT systems Leasing › Strong competition, poor economic and market conditions due to COVID-19 pandemic are some key factors that could result inkey tenants not renewing their leases, adversely affecting the leasing performance of CMMT Group’s properties › Establish andmaintain a diversified tenant base and sustainable trade mix › Proactive tenant management strategies which are in line with the malls’ positioning are in place › Closely monitor tenants’ sales performance and maintain positive relationships and rapport with retailers to build loyalty with CMMT Group’s properties Regulatory & Compliance › Non-compliance to applicable local laws and regulations in the markets CMMT Group operates in which may lead to hefty penalties/fines and negative publicity › Maintain a framework that proactively identifies the applicable laws and regulations, and embeds compliance into day-to- day operations › Leverage in-house specialised teams from CapitaLand such as legal, secretariat and compliance that provide advisory services and updates on latest changes to laws and regulations › Report significant regulatory non-compliance cases to the AC and Exco on a quarterly basis for oversight by the Board Safety, Health & Well-being › Increased expectations from stakeholders to provide a safe and healthy environment, including well-being, at CMMT Group’s properties › Regular reviews of CMMT Group’s mitigation efforts which include work-related safety targets applicable to both CMMT Group and our supply chain › CapitaLand has in place aGroup health and safetymanagement system which is externally certified to ISO 45001 › For more information, please refer to CapitaLand’s Global Sustainability Report 2020, to be published by 31 May 2021 121 BECAUSE TOMORROW MATTERS