Información de contacto

Envíanos un email
Client Area
shape-img
shape-img

Security Policy

Data911 Software

Security Policy

DATA911 EUROPE SL, hereinafter referred to as DATA911, has decided to manage its information systems using the best international practices, in accordance with the ISO 27001:2013 standard.

Given the importance of information systems, DATA911 establishes the following fundamental principles of information security through its Management:

  • Regulatory Compliance: All information systems comply with applicable legal, regulatory, and sectoral regulations affecting information security, especially those related to the protection of personal data, system security, data, communications, and electronic services.
  • Risk Management: Risks are minimized to acceptable levels, seeking a balance between security controls and the nature of the information. Security objectives are established, reviewed, and consistent with the aspects of information security.
  • Training and Awareness: Training programs, awareness sessions, and awareness campaigns are organized for all users with access to information, focusing on information security.
  • Availability, Integrity, and Confidentiality:
    • Availability of information is ensured, guaranteeing business continuity supported by information services through contingency plans.
    • Integrity of the information is ensured, making sure it is accurate and precise, focusing on the accuracy of both its content and the processes involved.
    • Confidentiality of the information is guaranteed, so that only authorized persons have access to it.
  • Proportionality: The implementation of controls to mitigate security risks to assets is done seeking a balance between security measures, the nature of the information, and the risk.
  • Responsibility: All members of DATA911 are responsible for their conduct regarding information security, complying with established rules and controls.
  • Continuous Improvement: The effectiveness of the security controls implemented in the organization is regularly reviewed to increase the ability to adapt to the constant evolution of risk and the technological environment.

Consistent with the assumed responsibility and convinced that security management is essential for the future and excellence of the company, the Management of DATA911 commits to providing the necessary resources for the fulfillment of this policy.

In accordance with this policy, security objectives are established at all levels, and their degree of compliance is monitored, so that we can measure our improvement.

The Management of DATA911 periodically reviews the information security management system (ISMS), with the commitment to ensure its proper and effective development, continuous improvement, and its adaptation to new applicable legal requirements.

Barcelona, March 22, 2022

The Management