Information Security Management Policy
The Information Security Management Policy of Keepler Data Tech SL establishes:
The COMMITMENT to provide and maintain the highest levels of service quality, generating the maximum guarantees of information security possible.
The PURPOSE is to be an organization oriented towards process management and risk analysis, to ensure their control and improvement, the integration of our personnel in their development, and the fulfillment of the commitment to quality and information security, in order to seek the utmost satisfaction of our customers.
As well as being a reference for sectors and activities;
Information Security Management Systems applied to;
Custom enterprise software development and maintenance.
According to the current statement of applicability.
Aware of the need for internationally recognized Standardized Systems, the organization has aligned its Information Security Management System with ISO 27001 and ISO 27701 standards.
Therefore, the Management commits to lead and maintain an Information Management System in the organization based on continuous improvement and the following guidelines:
- A sincere commitment to understanding the needs and expectations of our customers and other stakeholders to achieve their satisfaction, and to continuous improvement by establishing and periodically verifying compliance with established objectives.
- The commitment to compliance with applicable laws and regulations, as well as subscribed requirements.
- Ensuring the security of both our own and our clients’ information. Our activities involve the processing of various types of information as part of executing fundamental processes of the business. Recognizing that information systems, applications, communication infrastructures, files, and databases constitute significant assets of the organization, the management prioritizes confidentiality, integrity, and availability of information when defining and delineating objectives and responsibilities for various technical and organizational actions. It also monitors compliance with legal frameworks, specific directives, policies, and defined procedures.
- A commitment to continuous review of competencies and continuous improvement to ensure the quality of services and the ability to address the increasing challenges presented by our customers.
All our personnel accept the commitment to improve services, auxiliary company processes, and develop responsible information security behavior within their respective positions.