Global Security Verification Report

Similar documents
Global Security Verification Report

Global Security Verification Report

Global Security Verification Report

C-TPAT Security Guidelines for Air Freight Consolidators, Ocean Transportation Intermediaries and Non-Vessel Operating Common Carriers (NVOCC)

Xerox Supplier Security Requirements

Security Procedure - Participation / Certification in Foreign Customs Administrations Supply Chain Security Programs

C-TPAT Minimum Security Criteria

Foreign Manufacturer Eligibility Requirements

C-TPAT Partner Application for Importers Instructions

Importers: C-TPAT Minimum Security Requirements

Minimum-Security Criteria for C-TPAT Foreign Manufacturers

C-TPAT Security Standards. Importers

C-TPAT Minimum Security Requirements Importers

Customs -Trade Partnership Against Terrorism (C-TPAT) Vendor Participation Overview

TRUSTED TRADER APPLICATION (C-TPAT AND ISA)

A Message for Brokers Letter And Security Guidelines for Brokers

Proactive Approaches. To Minimize. Supply Chain Security. Breaches in the Rail, Air, Ocean and Land Environment

Please complete the questionnaire and fax it to

C-TPAT Questionnaire. Type of Partner

C-TPAT Audit Report. General Overview of the Audit s findings. Overall Score (result) Audit Findings & Corrective Action

Lowe s Corporate Cargo Security Guidelines for Manufacturing and Warehouse Facilities

Air Carrier Eligibility Requirements

Milestone AV Technologies TECHNICAL SPECIFICATION

C-TPAT Security Questionnaire PASS FAIL 1

C-TPAT Information for Foreign Manufacturers & Suppliers

BV Security Assessment (Based on C-TPAT SCS Best Practice, US Customs and Border Protection) (1-day Assessment)

CTPAT Security Requirements for Import Suppliers

C-TPAT Requirements. Dated: July 1 st, Valued Suppliers. C-TPAT Security Recommendations and Requirements

Rail Carrier Minimum-Security Criteria

ABSTACT 2016 GENERAL SECURITY GUIDELINES AND OPERATIONAL PROCEDURES

Colony Brands, Inc. Supply Chain Security Profile Customs-Trade Partnership Against Terrorism Service Provider Questionnaire

C-TPAT Security Criteria. Sea Carriers

Menard, Inc. ( Menard, Inc. ) C-TPAT Protocols for Suppliers

IMPORTER SECURITY RECOMMENDATIONS CUSTOMS-TRADE PARTNERSHIP AGAINST TERRORISM (C-TPAT)

Security Model. Jointly implement a security model within each segment of the supply chain Production Transportation Importation Distribution

Supply Chain Questionnaire Business Partners

Milliken and Company CTPAT Security Profile. Guidelines and Procedures for maintaining compliance with the CTPAT minimum security requirements

C-TPAT Expectations for

Food Defense Supplier Guidelines

Foreign Factory Profile

Retail Food Establishment. Self-Assessment Checklist. for. Food Defense

C-TPAT Expectations for Agents, Vendors & Manufacturers

Text Slide. Container and Seal Inspection Workshop

C-TPAT Best Practices. Wayne Kornmann Director, Long Beach C-TPAT Field Office

WILSONS LEATHER POLICY ACKNOWLEDGEMENT 2008

Text Slide. Container and Seal Inspection Workshop

Pakistan Supply Chain Security (PSCS) Code

FACTORY COMPLIANCE. NEW VENDOR MANUAL

Supply Chain Security Guidelines

Frequently Asked Questions Regarding Minimum Security Criteria for Importers 03/25/2005

Guidance Notes FSR 2014

Supply Chain Security Container Inspection and Seal Application

CUSTOMS-TRADE PARTNERSHIP AGAINST TERRORISM

Tenneco is a participant in the Customs-Trade Partnership Against Terrorism (C-TPAT). In the US,

FOOD DEFENCE SELF-ASSESSMENT CHECKLIST GRAIN HANDLING FACILITIES

TRAILER/CONTAINER SECURITY

Security Innovations to Adapt to Emerging Threats

AM Retail Group, Inc. C-TPAT EVALUATION

Food Defense and Emergency Response Security Guidelines. Keep America's Food Safe

IMPORTER ASSESSMENT PROGRAM FOR FOREIGN VENDORS

CONVEYANCE INSPECTION PROCEDURES AND SEALING PROCESS. ADAPTED FROM United Global Security: The Challenge Ahead

Table of Contents. Introduction Features for 2015 Implementation Suggestions C-TPAT Project Plan and Organizer Formatting Instructions

SUPPLY CHAIN SECURITY PROGRAMS. Customs-Trade Partnership Against Terrorism. Partners In Protection

ACCO Brands Corporation. Global Social Responsibility Policy

TAPA FSR 2009 Kraków 4th June 2009 Leszek Sitkowski LRQA Poland

TEXAS LOTTERY COMMISSION

DEVELOPING A FOOD DEFENSE PLAN A GUIDE

SEAL INTEGRITY PROGRAMME APPENDIX TO ANNEX I FRAMEWORK OF STANDARDS TO SECURE AND FACILITATE GLOBAL TRADE

2011 TAPA FSR Scoring Matrix FOR USE WITH TAPA BUYER AUDIT FORM 2011

The factory must establish in writing the persons who are authorized to complete and/or sign shipping documents.

BIOSECURITY IN THE DAIRY PLANT IDFA's Guidance Document for the Dairy Industry

SECTION 1: TRADER INFORMATION

STUDENT ASSESSMENT TLIO5017 MANAGE SECURITY OF STORAGE FACILITIES

IMPORTING & EXPORTING NEW DEVELOPMENTS IN OCEAN PRICING AND CUSTOMS SUPPLY CHAIN SECURITY By: Andrew M. Danas, Esq. Grove, Jaskiewicz and Cobert, LLP

Compliance or Enhance the Competitiveness? The Most Secure Port - HKG

CDM WinAMS (Internet) User Guide Version TABLE OF CONTENTS CDM WINAMS LOGIN 2 CDM WINAMS MAIN SCREEN 3

Distribution Capabilities

General Information on Authorised Economic Operator (AEO)

TRENDS IN LOGISTICS SCLG. Alex Kilic SICK UAE November 2016

XYZ Port Facility Maritime Security Exercise. Controller Briefing. date

e-manifest SETUP PACKAGE

Supply Chain Security IGTLC

Physical Security Assessment Form

AEO Safety and Security Guidelines: Freight Forwarder

Audits should be undertaken by an independent person either from within the company or an outside consultant.

Auto Alerts Customer Portal

Customs-Trade Partnership Against Terrorism

Integrated Compliance Manual for Vendors and Factories

Template Document for the Interim Final Rule 33 CFR

Importer Security Filing and Additional Carrier Requirements

FERRIBY MARINE SHIP SECURITY ASSESSMENT AUDIT CHECKLIST

AEO program. (Authorized Economic Operator) Customs & Tariff Bureau Ministry of Finance, Japan

Our Roots.

SESSION V: Critical port security Issues Assuring cargo integrity prior to, during and post marine terminal operations

Factory Audit Report

International Registration Plan, Inc. IRP Records Review Best Practice Document

Appendix 2 Authorized Economic Operators (AEO) Self-assessment questionnaire

US-CTPAT VALIDATION, 4 th MAY TEXPORT INDUSTRIES PVT. LTD. UNIT10: Block # 3, 106/1, Kenchanahalli, Mysore Road, Bangalore

Secure container transport: challenges & barriers in the complete stakeholder chain

TABLE OF CONTENT AVIATION DISTRICT MAP 2 INTRODUCTION 3 OPERATION SERVICES 9 WASTE MANAGEMENT GENERAL TARIFFS EMERGENCY NUMBERS 26

Transcription:

Measured Performance - Improved Security Global Security Verification Report HANSAE TG CO., LTD Registration Number : A20480-838116 Company : HANSAE TG CO., LTD Date of Verification : 08-Jul-2016 Auditor(s) Name : Oanh pham, Hanh Tran Overall Rating Low Risk Priority (86 100) Meet Expectations Participating Facilities : 16344 Medium Risk Priority(76 85) Further Improvement Needed High Risk Priority(0 75) Urgent Action Required Send Us a secure message. Complete the GSV on-line Compliments and Complaints feedback form Go Now

COMPANY PROFILE COMPANY INFORMATION Company name: Contact name: Address 1: Address 2: - City: - State: HANSAE TG CO., LTD Mr. Kim Sang Ryur - Executive Manager Lot BIII, BIII-25, BIII-26, Tan Huong Industrial Park, Tan Huong Town, Chau Thanh District Tien Giang Province Postal Code: 84-73 Country: Vietnam Phone: 84-73-6265777 Fax: 84-73-6265888 Email: srkim@hansae.com Website: - NUMBER OF EMPLOYEES Permanent: 5078 Temporary: 0 Overseas / Migrant: 39 Total: 5117 BUSINESS OVERVIEW Industry: Key / Main product: Country of operation: Participation in security initiatives: Description of security initiative: Apparel Garments Vietnam No None FACILITY STRUCTURE Number of buildings 35 Distribution: 0 Production: 10 Warehouse: 2 Container yards: 0 Other: 23 Facility land size: Total facility floor size: Warehouse customs bonded: Free trade zone: 371971M. Sq. 282000M. Sq. NO NO Logistics/Transportation for shipments to US Trucks owned By Company: Percent of goods exported to US No By air: 5% By sea: 95% By rail: 0% By truck: 0% Description of "other" buildings: One 2-storey building for office, 10 flat buildings for canteens, ten 2-storey buildings for parking areas and two 3-storey buildings for expat dormitory 1

Export Logistics Facility responsible for the relationships with the following type of logistics : Air : Sea : Rail : Land Carriers: Sometimes Always Never Always GENERAL OVERVIEW Consolidators: Freight forwarders: NVOCC: Other 3rd party logistics providers: Never Never Never Never Brief Description of the Facility: Brief Description of Loading Process for Shipment: Brief Description of Sealing Process: Brief description of direct shipments to port process: In-country transport services detail: The companies used vary routes: The companies used employ security guards: The companies used provide vehicle escort: The companies used Global Positioning Satellite (GPS): The companies used truck convoys: Required transit time between audited facility to the port/the next supply chain: CCTV details: Security guard force details: HANSAE TG CO., LTD is located at Lot BIII, BIII-25, BIII-26, Tan Huong Industrial Park, Tan Huong Commune, Chau Thanh District, Tien Giang Province, Vietnam. They have started their operation at the existing located since 2010. The total land area is about 371,971 square meters, in which the total land area in use is 282,000 square meters. The main product is knit wears. The main market is US. The facility is composing of thirty-five (35) buildings used for production workshops, warehouses, parking areas, canteens, office and expat dormitories. There are 5,078 employees working at the facility. The packed cargo would be stored in the finished goods warehouse storage. The loading plan and packing-list would be prepared by supervisor of import and export department and provided to the leader of finished goods warehouse before starting loading operation. The loading activities would be monitored by camera and supervisor of import and export department. The quantity of carton and label would be double checked during loading. The high security seal of each container should be provided by carrier. The seal would be kept by supervisor of import and export Department. The seal numbers would be recorded in the shipment form. Yes, All finished goods was shipped directly to port by approved transportation. Yes, Thanh Trung - Transportation service contract Yes, Yes, No, No, No, 2 hours Yes, 141 camera Yes, 49 security guards 2

I. NUMBER OF NON-COMPLIANCES NOTED IN EACH CATEGORY The C-TPAT Security Criteria and Security Guidelines indicate that there are must and should requirements. "Must" means that it is a requirement of the program participation. "Should" means that the procedure is considered to be an industry "best practice" however as the program matures, more "shoulds" will become "musts." Category Name Score Must Do Should Do Best Practice Records & Documentation 88 1 0 0 Personnel Security 100 0 0 6 Physical Security 97 1 3 10 Information Access Controls 93 1 0 5 Shipment Information Controls 100 0 0 0 Storage & Distribution 100 0 0 2 Contractor Controls 86 0 1 3 Export Logistics 100 0 0 2 OVERALL 97 3 4 28 High Risk Priority (0-75%) Medium Risk Priority(76-85%) Low Risk Priority(86-100%) 3

II. FACILITY SCORE CARD Security Sections Section/Subsection Score (0-100) Records & Documentation 88 Personnel Security 100 Documented Personnel Security Policies/Procedures 100 Personnel Screening 100 Identification System 100 Education/Training/Awareness 100 Physical Security 97 Plant Security 94 Perimeter Security 100 Outside Lighting 100 Container Storage NA Security Force 100 Access Controls 94 Visitor Controls 100 Entering/Exiting Deliveries 96 Employee/Visitor Parking 100 Production, Assembly, Packing Security 100 Information Access Controls 93 Shipment Information Controls 100 Storage & Distribution 100 Storage 100 Loading for Shipment 100 Contractor Controls 86 Export Logistics 100 OVERALL SCORE 97 High Risk Priority (0-75%) Medium Risk Priority(76-85%) Low Risk Priority(86-100%) 4

III. RISK ASSESSMENT Criteria: The facility does not have a risk assessment program to analyze and identify critical areas of its supply chain that is the most likely targets for infiltration. The facility does not use computer software risk-based assessment tool. The facility does not have written processes for the selection of their business partners to include a detailed risk assessment. The facility conducts a comprehensive risk assessment covering their own facility. The facility conducts a comprehensive risk assessment covering point of packing and stuffing. The facility conducts a comprehensive risk assessment covering contractors. The facility conducts a comprehensive risk assessment covering export logistics and at each transportation link within the chain. The facility conducts a comprehensive risk assessment annually. Risk assessments are fully documented. The facility has not adopted the 5 Step Risk Assessment Process Guide in conducting security risk assessment of their supply chain(s). The facility's documented Risk Assessment procedure does not include Documenting How the Security Risk Assessment is Conducted. Compliant/Non- Compliant Non-Compliant Non-Compliant Non-Compliant Compliant Compliant Compliant Compliant Compliant Compliant Non-Compliant Non-Compliant 5

IV. OPPORTUNITIES FOR IMPROVEMENTS The following sections includes all exceptions noted during the on-site audit. Each exception is color coded to indicate the severity as indicated in the C-TPAT criteria for foreign manufacturers. Must Do Should Do Best Practices Informative 88% Section: Records & Documentation Exceptions Noted: A security assessment of the facility site should be conducted to identify weaknesses at least every 12 months and weaknesses identified, recorded in a log, and corrected in a timely manner. The findings of the security audit in May 2016 did not have evidences of corrective actions. Global Freq. of Compliance % 58 % 100% Section: Personnel Security SubSection: Documented Personnel Security Policies / Procedures SubSection: Personnel Screening SubSection: Identification System Exceptions Noted: Global Freq. of Compliance % SubSection: Education / Training / Awareness 97% Section: Physical Security SubSection: Plant Security International Supply Chain Security Requirements & Criteria Alarm systems and video surveillance cameras should be utilized to monitor premises and prevent unauthorized access to cargo handling/storage areas Exceptions Noted: Global Freq. of Compliance % The facility does not have an intrusion detection or an alarm system 36 % The automatic intrusion detection was equipped at Factory No.5 only. SubSection: Perimeter Security High Risk Priority (0-75%) Medium Risk Priority(76-85%) Low Risk Priority(86-100%) 6

SubSection: Outside Lighting SubSection: Security Force SubSection: Access Controls Exceptions Noted: Global Freq. of Compliance % CCTVs are monitored by non-security personnel 44 % SubSection: Visitor Controls SubSection: Entering / Exiting Deliveries International Supply Chain Security Requirements & Criteria Arriving packages and mail should be periodically screened before being disseminated / Additional training should be provided to employees in the shipping and receiving areas, as well as those receiving and opening mail Written procedures must stipulate how seals are controlled and affixed to loaded containers, including recognizing and reporting compromised seals and/or containers to local Customs authorities / All shortages, overages, and other significant discrepancies or anomalies must be resolved and/or investigated appropriately / All shortages, overages, and other significant discrepancies or anomalies must be resolved and/or investigated appropriately Exceptions Noted: There are no documented procedures implemented to periodically screen arriving packages and mail prior to distribution Arriving packaging and mail were not periodically screen. Global Freq. of Compliance % Examinations of containers/trailers found with broken seals do not document other anomalies 42 % 86 % SubSection: Employee / Visitor Parking SubSection: Production, Assembly, Packing Security 93% Section: Information Access Controls International Supply Chain Security Requirements & Criteria Procedures must be in place to ensure that all information used in clearing merchandise/cargo is legible, complete, accurate, and protected against the exchange, loss or introduction of erroneous information. Documentation control must include safeguarding computer access and information / Automated systems must use individually assigned accounts that require a periodic change of password Exceptions Noted: Global Freq. of Compliance % High Risk Priority (0-75%) Medium Risk Priority(76-85%) Low Risk Priority(86-100%) 7

Password changes are not required by policy, or enforced in a systematic manner. 75 % Passwords of computers were changed every 90 days. 100% Section: Shipment Information Controls 100% Section: Storage & Distribution SubSection: Storage SubSection: Loading for Shipment 86% Section: Contractor Controls International Supply Chain Security Requirements & Criteria Foreign manufacturers must ensure that business partners develop security processes and procedures consistent with the C-TPAT security criteria to enhance the integrity of the shipment at point of origin, assembly or manufacturing. Periodic reviews of business partners processes and facilities should be conducted based on risk, and should maintain the security standards required by the foreign manufacturer. Exceptions Noted: The facility or its designated third party auditor does not conduct on-site inspections of the contractors' implementation of related security standards/procedures. No on-site inspection of contractor was conducted Global Freq. of Compliance % 42 % 100% Section: Export Logistics NS Section: Transparency In Supply Chain Not Scored Exceptions Noted: The facility does not conduct on-site inspections of the contractors' implementation of the their security standards/procedures that includes compliance with human trafficking and slavery policies. No on-site inspection was conducted Global Freq. of Compliance % 19 % High Risk Priority (0-75%) Medium Risk Priority(76-85%) Low Risk Priority(86-100%) 8

Strengths Noted: There is a documented system in place to ensure that management is informed of and investigates all anomalies found in shipments including human trafficking. There is documented cargo verification procedure in place to prevent unmanifested cargo and/or illegal aliens from being loaded. The facility requires its contractors to conduct self-assessment of their security policies and procedures including status of their compliance with human trafficking and slavery policies and share the results of those assessments with the facility. The facility have written or electronic confirmation of its partners' compliance with Business Transparency on Human Trafficking and Slavery Act (e.g., contract language, a letter of commitment signed at the management level or above, signed acknowledgement of receiving the facility's participation announcement). The facility have written security standards and documented procedures for selection of its contractors (contracts, manuals, etc.) and handling contractors failing to meet company standards regarding security and slavery and trafficking. There is a written security awareness program covering awareness of current terrorist threat(s), human trafficking, smuggling trends, and seizures in place to ensure employees understand the threat posed by terrorist at each point of the supply chain. Global Freq. of Compliance % 46 % 60 % 16 % 18 % 23 % 24 % NS Section: Risk Assessment Not Scored Exceptions Noted: The facility does not have a risk assessment program to analyze and identify critical areas of its supply chain that is the most likely targets for infiltration. Global Freq. of Compliance % The facility does not use computer software risk-based assessment tool. 6 % The facility does not have written processes for the selection of their business partners to include a detailed risk assessment. The facility has not adopted the 5 Step Risk Assessment Process Guide in conducting security risk assessment of their supply chain(s). The facility's documented Risk Assessment procedure does not include Documenting How the Security Risk Assessment is Conducted. Strengths Noted: 11 % 10 % 5 % 9 % Global Freq. of Compliance % The facility conducts a comprehensive risk assessment annually. 11 % Risk assessments are fully documented. 100 % The facility conducts a comprehensive risk assessment covering their own facility. 14 % The facility conducts a comprehensive risk assessment covering point of packing and stuffing. 13 % The facility conducts a comprehensive risk assessment covering contractors. 10 % The facility conducts a comprehensive risk assessment covering export logistics and at each transportation link within the chain. 11 % High Risk Priority (0-75%) Medium Risk Priority(76-85%) Low Risk Priority(86-100%) 9

V. BEST PRACTICES AND RECOMMENDED BEST PRACTICES CBP describes Best practices as innovative security measures that exceed the C-TPAT minimum security criteria and industry standards. The following are a list of best practices this supplier has implemented. Existing Best Practices: Section: Personnel Security Criminal record checks are conducted Other type of checks such as criminal record checks are conducted on all employees Personnel are encouraged to report irregularities through Suggestion Box Personnel are encouraged to report irregularities through Phone Number/Hotline The facility has a process in place to publicize the security procedures throughout the facility (i.e. posters, bulletin boards, etc) The facility provides training in local language or language understood by employees of different origin. A security awareness assessment is given annually to a random sample of employees to gauge their understanding of the company's general security policy. Photos of authorized employees to access the restricted areas are posted in the work area to detect any unauthorized entry/access. Personnel are encouraged to report irregularities thru Email Hotline. Section: Physical Security The lighting system has an emergency power source/generator Access to the lighting switches is restricted to only authorized personnel. Gates are monitored during operating hours by guards at the gate Gates are monitored during operating hours by patrolling guards Gates are monitored during operating hours by CCTV Gates are monitored by guards during non-operating hours Gates are monitored by patrolling guards during non-operating hours Gates are monitored by cameras during non-operating hours Vendors are required advance information before visiting the facility premises The facility maintains an up-to-date list of names and addresses of all contractor (e.g., canteen staff), vendor, repair personnel. Visitors are subject to metal detector and/or scanner screening. For conveyance entries/exits, logs are maintained with name of the guard Parking lots for visitors and employees are separated Visitor and employee personal vehicle parking lots are monitored by security guards during facility operating hours. The facility requires the use of visual identification for visitor parking. The company requires the use of visual identification for employee parking The facility has digital cameras as part of surveillance. The facility has motion activated cameras as part of surveillance. Advance notice is required for a pick-up or delivery transport company. 10

The gate security or a designated facility manager performs truck outbound inspection and the results are recorded in an Outbound Vehicle Log. Guards receive specific training in General Security. Guards receive specific training in Site-Specific. Guards receive specific training in C-TPAT. The emergency contact numbers are posted in the security posts and command center. All visitors given are safety and security pamphlet and/or visitors ID which lists general company safety and security rules that need to be followed while on the premises. Corrective actions are taken when missing visitor badges are identified. A log is maintained with Driver's license number. Section: Information Access Controls Facility implemented into its network system anintrusion warning system and/or virus protection The facility conducts review of access rights to safeguard electronic business data. The facility provides different level of access rights to employees according to their roles. Access to the data is protected from being copied, altered, tampered or deleted. Visitors are required to declare all electronic equipment entered in the facility. Section: Shipment Information Controls Information requirements for shipments are automated Facility conducts a review of shipment information and documentation controls to verify accuracy and security at least every six months The facility have electronic access control system to secure sensitive trade documents. Section: Storage & Distribution The facility keeps records of seal numbers together with the name of person using the seal and date of use of seal. Container/trailer loading process is monitored by security or a supervisor. Empty containers are inspected by the gate guards upon entry to the facility. The facility obtains copy of Container Interchange report and review it to ensure that it has been inspected by the forwarder prior to delivery to the facility. Loaded containers/trailers' final inspection is conducted. The facility receives approval from the importer/buyer before cargo can be loaded into a container. The container/trailer loading process monitored by more than one personnel including security and supervisor. According to procedure, the seals are affixed to the right door of the container/trailer on the hasp that has the welded rivet. According to procedure after the seal is affixed to the container, there is an authorized employee who should make sure that the seal is secure by pulling down on it. The seal verification and inspection process includes the following VVTT procedure: Verify seal number. The seal verification and inspection process includes the following VVTT procedure: View seal and container locking hardware. The seal verification and inspection process includes the following VVTT procedure: Tug on seal to make sure it's on right. The seal verification and inspection process includes the following VVTT procedure: Twist and turn seal to make sure it doesn't unscrew. Multiple seals or security devices are used on each container/trailer. Section: Contractor Controls The facility require assigning an ID badge to a contractor s employee that enters the premises. 11

The facility require its contractors to participate in security awareness training. The facility provides periodic security awareness training to all of the contractors. The facility communicates its security policies to its contractors. The facility communicates the company's security policies through: publication. Section: Export Logistics The carrier has intermediate staging/rest period/layover of cargo conveyances prior to reaching the consolidation center/port/border The facility has a procedure for in-country carriers to report security violations to facility s management The facility conduct a security review of their transport company to ensure compliance with the contract. Cargo trucks are monitored and checked every hour. The facility utilizes a progress control system to monitor the status of up its cargo delivery (including contracted incountry transport). Recommended Best Practices: Section: Personnel Security IDs should specify access for loading/unloading/packing dock areas by Numeric coding IDs should specify access for loading/unloading/packing dock areas by Map coding IDs should specify access for loading/unloading/packing dock areas by electronic coding The facility should provide online training portal. The facility should provide Certificate of Completion and/or similar recognition to all employees who attended the training. The facility should perform emergency response mock drills. Section: Physical Security The facility should have a back-up power source for the alarm system The alarm system or intrusion detection system should be tested regularly. Violations to the alarm system should be reported Lights should be illuminated automatically. Gates should be monitored during operating hours by motion detectors Gates should be monitored during non-operating hours by motion detectors Visitors should be subject to X-ray of their personal belongings. Vehicles should be prohibited/prevented from parking near perimeter fencing. The facility should have an automatic intrusion detection or alarm system installed in those areas of the perimeter of the facility that are inaccessible to security patrols. Pilfer or tamper proof packaging and tapes should be utilized to secure the goods. Section: Information Access Controls Employees should be required to sign a Non-Disclosure Agreement (NDA) to secure and protect Company's information. Each office workstation should contain a photo of the employee who is assigned to that work area to detect any unauthorized computer terminal usage. The facility should limit use of VPN to access company's network directory. Security warning message should be displayed when guest are given access to company's internet access. USB ports and external drives should be disabled/sealed to prohibit copying of company information. 12

Section: Storage & Distribution The facility's external shipping door should be assembled in such a way that opening the door requires a person outside and another person inside to open it. There are signs posted at each of the loading doors with pictures and examples of the correct seal verification and inspection process. Section: Contractor Controls The facility should terminate service with non-compliant contractors. The facility should communicate the company's security policies through internet websites (homepage contains information and/or link of C-TPAT and other security standards). The facility should communicate the company's security policies through: electronic advertisement. Section: Export Logistics The facility s written agreement with their transport company should indicate preferred transit route(s) used by the driver, the allowable transit time limit, designated rest/meal stop locations and a process for a driver to report a container or trailer security issue. There should be a written procedure in place to identify/inquire if trucks are late for their scheduled appointment. 13

VI. PERFORMANCE TREND ANALYSIS Why Performance Trend Analysis Matter? Investors in the international supply chain look closely at trends to make a judgment about the current and future direction of a businesspartners performance. It is often easier to determine how best to support the development and implementation of measures for enhancing business performance, by looking at a chart of performance trends over a period of time, in relation to the performance traits of similar such enterprises operating within like industries. Mutual understanding of cause and effect is an important first step toward achieving a shared objective of continuously enhancing performance and building stronger business partner relationships. Current Assessment (08-Jul-2016) Last Assessment (24-Jun-2015) First Assessment (26-May-2014) Section Name Current Last First Change (Current-Last) Change (Current-First) Records & Documentation 88 88 95 0 % -7 % Personnel Security 100 94 93 6 % 7 % Physical Security 97 97 98 0 % -1 % Information Access Controls 93 100 83-7 % 12 % Shipment Information Controls 100 100 100 0 % 0 % Storage & Distribution 100 100 98 0 % 2 % Contractor Controls 86 87 100-1 % -14 % Export Logistics 100 100 100 0 % 0 % Overall Score 97 96 96 1 % 1 % Advancers Constant Decliner 14

VII. KEY STRENGTHS AND CHALLENGES Facility Strengths: Facility performance ranks in the top percentile of the population and/or has Global Freq. of Criteria implemented a best practice process Compliance% Informative The facility conducts a comprehensive risk assessment covering contractors. 10% Informative The facility conducts a comprehensive risk assessment covering export logistics and at each transportation link within the chain. Informative The facility conducts a comprehensive risk assessment annually. 11% Informative The facility conducts a comprehensive risk assessment covering point of packing and stuffing. 13% Informative The facility conducts a comprehensive risk assessment covering their own facility. 14% Informative Informative Informative Informative Must Do The facility requires its contractors to conduct self-assessment of their security policies and procedures including status of their compliance with human trafficking and slavery policies and share the results of those assessments with the facility. The facility have written or electronic confirmation of its partners' compliance with Business Transparency on Human Trafficking and Slavery Act (e.g., contract language, a letter of commitment signed at the management level or above, signed acknowledgement of receiving the facility's participation announcement). The facility have written security standards and documented procedures for selection of its contractors (contracts, manuals, etc.) and handling contractors failing to meet company standards regarding security and slavery and trafficking. There is a written security awareness program covering awareness of current terrorist threat(s), human trafficking, smuggling trends, and seizures in place to ensure employees understand the threat posed by terrorist at each point of the supply chain. Facility conducts periodic unannounced security check.to ensure that transport company is in compliance with the contract. 11% 16% 18% 23% 24% 28% Criteria Should Do Facility Challenges: Facility performance ranks in the bottom percentile of the population There are no documented procedures implemented to periodically screen arriving packages and mail prior to distribution Global Freq. of Compliance% Must Do Password changes are not required by policy, or enforced in a systematic manner. 75% Must Do A security assessment of the facility site should be conducted to identify weaknesses at least every 12 months and weaknesses identified, recorded in a log, and corrected in a timely manner. Should Do CCTVs are monitored by non-security personnel 44% Should Do The facility does not have an intrusion detection or an alarm system 36% Informative Informative Informative Informative The facility does not conduct on-site inspections of the contractors' implementation of the their security standards/procedures that includes compliance with human trafficking and slavery policies. The facility does not have a risk assessment program to analyze and identify critical areas of its supply chain that is the most likely targets for infiltration. The facility does not have written processes for the selection of their business partners to include a detailed risk assessment. The facility's documented Risk Assessment procedure does not include Documenting How the Security Risk Assessment is Conducted. Informative The facility does not use computer software risk-based assessment tool. 6% 86% 58% 19% 11% 10% 9% 15

VIII. COMPARISON BENCHMARK High Risk Priority (0-75%) Medium Risk Priority(76-85%) Low Risk Priority(86-100%) 16

FACILITY PHOTOS FOR HANSAE TG CO., LTD 1.Facility Photo 2.Facility Entrance 3.Perimeter Fencing 17

4.Facility Building 5.Employee Parking 6.Visitor Parking 18

7.Outside Lighting 8.Security Room- Communication Equipment 9.CCTV system and monitor 19

10.Packing Area 11.Finished Goods Warehouse 12.Loading Area 20

13.Facility Name 14.Employee ID Badge 15.Visitor's ID Badge 21

16.Shipping Logs 17.Shipping Documents 22

DISCLAIMER This report is for the exclusive use of the client of Intertek named in this report ( Client ) and is provided pursuant to an agreement for sevices between Intertek and Client ( Client Agreement ).No other person may rely on the terms of this report. This report provides a summary of the findings and other applicable information found/gathered during the audit conducted at the specified facilities on the specified date only. Therefore, this report does not cover, and Intertek accepts no responsibility for, other locations that may be used in the supply chain of the relevant product or service. Further, as the audit process used by Intertek is a sampling exercise only,intertek accepts no responsibility for any non-compliant issues that may be revealed relating to the operations of the identified facility at any other date.intertek's responsibility and liability are also limited in accordance to the terms and conditions of the Client Agreement.Intertek assumes no liability to any party, for any loss, expense or damage occasioned by the use of this information other than to the Client and in accordance with the Client Agreement and these disclaimers. In case there is any conflict between the disclaimers stated herein and the applicable terms and conditions of Intertek incorporated into the Client Agreement, then these disclaimers shall prevail. 23

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback