Information Security Policy

Date: 04/08/2025
Version: 1
Use of Information: Public

Version Management

VersionAuthorDateDescription
1RGSI04/08/2025Initial Version

Information Security Policy

THE ORGANIZATION is a consulting services company specialized in Artificial Intelligence and Business Intelligence. Our mission is to accompany our clients in their growth and digital transformation through the implementation of innovative technologies, data-driven solutions and advanced analytics and business intelligence methodologies.

The fundamental objectives of our information security management system are:

  • Protect information assets according to their value or importance.
  • Ensure confidentiality, availability and integrity of information.
  • Manage identified risks in a diligent manner.
  • Preserve the privacy of customers, employees, suppliers and third parties.
  • Ensure compliance with applicable requirements, especially legal requirements.
  • Continuously improve the information security system.

In order to achieve these general objectives, the management of this company is firmly committed to optimizing its information security policy based on the following factors:

  • Risk Prevention: Establish the necessary guidelines and means in terms of risk prevention with the fundamental objective of eliminating or mitigating risks.
  • Commitment to environmental protection: Reduce and prevent environmental impacts generated by our activities, products or services.
  • Legal Requirements: Understand the legal requirements and other requirements specified by our customers as a set of minimum requirements to be met.
  • Dissemination: Disseminate and promote the improvement of information security.
  • Stakeholders: Joint participation with all our stakeholders to improve information security.
  • Training: Constant training of all our professionals, encouraging their participation and commitment to this policy and the improvement of the system.
  • Monitoring: Establish indicators at all levels to enable us to make evidence-based decisions.
  • Continuous improvement: Establish and periodically review objectives and targets that provide a framework for continuous improvement of processes and sustainable development.
  • Analyze: Analyze and evaluate deviations that may occur in information security and establish the necessary corrective actions and opportunities for improvement.
  • Integrated system: Participative elaboration of all groups of the organization, at all levels, being aware of the contribution to the objectives of the system and the repercussions of non-compliance.

The Address
04/08/2025