Aerial shot of marmoline factory

Information Security Policy

Information security is an important priority for the company in order to:

  • Ensure its full compliance with the relevant written legal and regulatory requirements
  • Protect its interests, as well as those who deal with it and trust it for the use and handling of their confidential data
  • Ensure the availability, integrity and confidentiality of information generated, received and circulated in the context of the projects
  • To maximize the reliability of its information resources

The implementation of the Information Security Management System aims to achieve the following:

  • Protection of stored files, computing resources and information in transit from any threat, internal or external, intentional or accidental
  • Systematic assessment and evaluation of the risks related to the assurance of information, aiming at their proper and timely management.
  • Archiving data, preventing viruses and external intrusions, controlling access to systems, recording all security incidents and managing unexpected situationsConstantly informing management and staff on information security matters and conducting training seminars for staff
  • Commitment of the company’s Management to the full implementation and continuous improvement of the Information Security Management System

The Information Security Management Officer is responsible for controlling and monitoring the operation of the system, as well as informing all involved personnel about the Information Security Policy.

All personnel involved in the activities and procedures related to information security have the responsibility to apply the policy and the corresponding system procedures, in their field of work.

Management and all employees are committed to achieving the company’s goals and adhering to the principles related to Information Security.

To achieve the above, the company implements an Information Security Management System according to EN ISO 27001