Information Security Policy

Introduction

CANENERO recognizes that information security is fundamental to the success and reputation of our company. Customer data, analysis results, suggested addresses, and investigative methods represent information whose value constitutes a critical asset for both our company and our clients.

Policy

To this end, CANENERO is committed to:

  • Protecting the confidentiality, integrity, and availability of information
  • Implementing and maintaining an Information Security Management System (ISMS) compliant with the ISO/IEC 27001:2024 standard
  • Setting security objectives focused on confidentiality, integrity, and availability of information
  • Ensuring that all employees are aware of their responsibilities regarding information security
  • Providing the necessary resources for the implementation and maintenance of the ISMS
  • Continuously improving the ISMS

Security Objectives

Specific security objectives include:

  • Preserving the confidentiality of data provided by clients
  • Ensuring the integrity of client-provided information and the data processing procedures used in our analyses
  • Guaranteeing the availability of such information to authorized personnel responsible for its management and use
  • Managing remote access securely, ensuring proper password management, software development security, and the timely distribution of security patches
  • Enforcing and applying a policy for the security of the internal IT network
  • Ensuring the implementation of a Business Continuity policy

Commitment to Compliance with Requirements

CANENERO and all employees are committed to complying with all requirements of the ISO/IEC 27001:2024 standard. CANENERO is dedicated to exercising leadership as defined by this standard.

Continuous Improvement

CANENERO is committed to continuously improving the ISMS through:

  • Periodic review of the ISMS
  • Identification and management of information security risks
  • Implementation of corrective and preventive actions
  • Training and raising awareness among personnel on information security

Conclusion

CANENERO believes that this Information Security Policy is essential for the success and reputation of our company. We are committed to providing a secure environment for our clients' information and to continuously improving our ISMS.

Firma documento