FCR Real Estate Investment Partnership Inc.

As FCR Real Estate Investment Partnership Inc. (“Company”), we have adopted the following Information Security Policy in order to ensure the security of our information assets and to protect our business continuity.

1. Purpose and Scope

This policy aims to protect the confidentiality, integrity and accessibility of all information assets of FCR GYO. All employees, business partners, suppliers and service providers of our company are within the scope of this policy.

2. Information Security Principles

• Confidentiality: To ensure that only authorized persons have access to information.

• Integrity: To protect the accuracy and completeness of information.

• Accessibility: To ensure that authorized users have timely and uninterrupted access to the information they need.

3. Legal Compliance

FCR GYO is committed to fully complying with all legal regulations, sectoral standards and contractual obligations regarding information security.

4. Risk Management

Risks to information assets are regularly assessed and necessary control measures are taken to minimize these risks.

5. Information Security Awareness

Regular training and briefings are provided to increase the information security awareness of our employees.

6. Access Controls

Access to information systems is regulated according to authorization levels and necessary technical and administrative measures are taken to prevent unauthorized access.

7. Physical Security

The security of the physical areas where our information processing infrastructure is located is ensured and protected against unauthorized access.

8. Incident Management

An effective notification and response process has been established for information security breaches and incidents. Incidents are recorded, analyzed and necessary corrective measures are taken.

9. Business Continuity and Disaster Recovery

Disaster recovery plans have been prepared and regularly tested to ensure our business continuity against possible disaster scenarios.

10. Continuous Improvement

The effectiveness of the Information Security Management System is regularly reviewed and continuous improvement studies are carried out.

11. Relations with Third Parties

Necessary measures are taken and audits are carried out to ensure that our suppliers and business partners comply with our information security standards.

12. Publication and Updating of the Policy

This policy is published on our Company's website and made available to all our stakeholders. It is regularly reviewed and updated in line with technological developments and legal changes.

As FCR GYO, we see information security as an integral part of our business and continue all our activities with this awareness.