DO-DIR-007 - ISMS & PI Policy
The information security policy of our company aims to protect the integrity, confidentiality, and availability of data belonging to our clients, partners, and employees, ensuring a safe and reliable environment for all operations.
We are committed to implementing and maintaining rigorous information security practices at all stages of development, implementation, and support of our access control and third‑party management systems.
All employees, contractors, and partners are responsible for following and promoting the established information security guidelines, contributing to the protection of data against internal and external threats.
We implement robust access controls to data, ensuring that only authorized individuals have access to the information necessary to perform their duties.
We are committed to complying with all applicable laws and regulations related to the protection of personal data, ensuring the proper and secure processing of such information.
We perform continuous monitoring and periodic audits to ensure the effectiveness of information security measures and to identify potential vulnerabilities or security incidents.
We promote employee education and awareness on safe data‑handling practices, offering regular training and resources to increase awareness of information security.
We are committed to the continuous improvement of our information security processes, systems, and policies, adapting to technological developments and emerging security threats.
We strictly comply with internal and external standards related to information security, taking full responsibility for protecting the data entrusted to us as data processors.
Approved by Senior Management.
DO-DIR-007 - Política do SGSI & PI
Our company's information security policy aims to protect the integrity, confidentiality and availability of our clients', partners' and employees' data, guaranteeing a secure and reliable environment for all operations.
We are committed to implementing and maintaining strict information security practices at all stages of the development, implementation and support of our access control and third-party management systems.
All employees, contractors and partners have a responsibility to follow and promote the established information security guidelines, contributing to the protection of data against internal and external threats.
We have implemented robust data access controls, ensuring that only authorized people have access to the information they need to perform their duties.
We are committed to complying with all applicable laws and regulations relating to the protection of personal data, ensuring the proper and secure handling of this information.
We carry out continuous monitoring and periodic audits to ensure the effectiveness of information security measures and identify potential vulnerabilities or security incidents.
We promote employee education and awareness of safe data handling practices, offering regular training and resources to raise awareness of information security.
We are committed to the continuous improvement of our information security processes, systems and policies, adapting to technological developments and new security threats.
Cumprimos rigorosamente com as normas internas e externas relacionadas à segurança da informação, assumindo a responsabilidade pela proteção dos dados confiados a nós como operadores de dados.
Aprovado pela Alta Direção.