Issue link: https://read.uberflip.com/i/1494922
PROPOSAL OF SERVICES FOR PURCHASE COLLEGE FOUNDATION | Page 14 As a publicly held company, detailed information regarding SEIC's corporate insurance program is deemed proprietary and confidential, and is evidenced to third parties per terms specified by written agreement (i.e., client's written and fully executed SEI service agreement) that imposes conditions of confidentiality over the release of such information. What is the business continuity and disaster recovery plan for your firm? Each business unit at SEIC creates and maintains a Business Continuity Plan. The SEIC corporate Business Continuity Management (BCM) Program addresses the regulatory, compliance, legal, and operational risks posed to the company in the event of a significant disruption or catastrophic incident. SEIC's corporate BCM Program uses an All-Hazards Approach to continuity in an effort to prepare for many types of disruptive events. The BCM Program provides a framework within which the individual business areas, operating companies, and SEIC as a whole can achieve 1) prevention, 2) containment, and 3) recovery. All serious business disruptions are addressed by the SEIC Crisis Management Team. It is this team's responsibility to respond to the incident, assess the impact, invoke the necessary action plans designed to minimize the business disruption, and provide communication to SEIC employees and clients. All staff are equipped to work from home if their office space is unavailable. Larger offices with critical daily deliverables also have agreements for workplace recovery with third-party vendors. SEIC's corporate BCM Program is governed by the Legal and Regulatory Committee (LROC) of the corporate Board of Directors. The LROC has assigned management responsibility of the BCM Program to the company's Operations Risk Committee (ORC). The BCM Program requires annual reviews by functional teams, business units and executives to incorporate changes and to adhere to guidelines required of SEIC, our parent company. The BCM Policy is approved by the LROC annually. The BCM Program is updated as needed and approved annually in January at a minimum by the ORC. The last BCM Program approval was completed in January 2023. Program status and updates are provided to the ORC quarterly and to the LROC or subsidiary boards as needed. SEIC's BCM Program incorporates our IT Disaster Recovery Program. IT disaster recovery program SEI's IT disaster recovery strategy is designed to recover, restore, connect and resume the critical processing services in the event that a disaster renders SEI's Global Technology Center in Oaks, PA, inoperable for an extended period. The recovery strategy will enable SEI and clients to resume and continue processing services through SEI's IT Disaster Recovery site. The Recovery Time Objective (RTO) for core processing systems is 24 hours. This enables our clients to access their critical operational systems to continue their day-to-day operations. The Recovery Point Objective (RPO) for core processing systems is 24 hours.