ESPA
Logo

BLOG

contact-icon

CONTACT

Logo

Information Security Policy

The main objective of the Information Security Management System (ISMS) of INGENIO INFORMATION SYSTEMS is to create a basis for a continuous improvement of the effectiveness of the processes followed and the security of information, to continuously fully satisfy the needs and expectations of its customers.

The scope of certification has been defined as follows:

PROVIDER OF INFORMATION SUPPORT SERVICES – MARKETING, INSTALLATION AND SUPPORT OF EPR INFORMATION SYSTEMS

The Company’s Management consistently adopts and implements the basic principles of ISMS and rules by setting information security objectives, based on the full and constructive cooperation of its employees and external partners

The basic principles as expressed in the ISMS of INGENIO INFORMATION SYSTEMS are the following:

  • Compliance with laws and regulations related to the Agency’s activity
  • Recognition of the requirements and subsequent needs of stakeholders, as expressed through documented information (such as contracts, correspondence, etc.)
  • Compliance with ISO 27001 requirements
  • Constant information and training of staff
  • Investigate non-compliances, causes and complaints and determine preventive/corrective measures
  • Recognition of management risk and business knowledge as opportunities for improvement
  • Protecting the interests and those who trust their confidential data to be processed
  • Ensuring the availability, integrity and confidentiality of information generated, received and transferred through the company’s systems
  • The physical security of INGENIO INFORMATION SYSTEMS’ premises is further reinforced through the use of a closed-circuit video surveillance system (CCTV), which is operated exclusively to protect individuals, assets, and critical information infrastructure. The system is used in full compliance with the applicable data protection legislation and with full respect for the rights of data subjects.
  • Maximising the reliability of information sources

 

The ISMS principles as well as the information security objectives are regularly reviewed by the Management of INGENIO INFORMATION SYSTEMS to adapt them to the new needs of (direct and indirect) customers, the legislative requirements and to meet the objectives for continuous improvement of INGENIO INFORMATION SYSTEMS operations.

Through continuous reviews of the above, the Management is in constant search to identify both human resource and infrastructure needs. Management is committed to providing the resources needed to meet the needs that arise in any given circumstance to the best of its ability.

All departments of INGENIO INFORMATION SYSTEMS have the responsibility to meet, assimilate and implement the procedures required by the ISMS during their daily activities.

It is the responsibility of the Management of INGENIO INFORMATION SYSTEMS to ensure that the Information Security Policy is communicated, understood and applied in all areas and processes of operation and by all human resources involved in the processes. The goal is to continuously develop the business activity with strict adherence to security principles and the objective of providing high quality services to customers.