INFORMATION SECURITY POLICY
Topaz High Management – Stefanini recognizes the importance of identifying and protecting the organization’s information assets, avoiding destruction, improper disclosure, improper modification or unauthorized use of any information related to its customers, employees, pricing, strategy, management or other related concepts.
Topaz – Stefanini is therefore committed to continuously developing, implementing, maintaining and improving the Information Security Management System (ISMS) in order to ensure the confidentiality, availability and integrity of information. In the event of non-compliance with the Information Security Policy, Stefanini will take appropriate measures to correct it.
To achieve this goal, Topaz – Stefanini:
- It sets annual objectives in relation to Information Security.
- Ensures identification and compliance with business requirements, contractual, legal and regulatory security obligations.
- It develops a risk analysis process and, according to its results, implements the appropriate actions to face risks considered unacceptable based on criteria established in the Process of Identification and Risk Assessment.