IT security policy
Our goal is to protect the confidentiality, integrity, availability and traceability of information and the information management tools through security measures within the information security system.
Issues regarding information security are handled with utmost importance. To achieve our goals, we operate our information security system in accordance with the MSZ ISO/IEC 27001:2013 standard - we are committed to developing it.
We consistently improve our information security management system.
We prioritise the comprehension and compliance of the related legislations, regulations and data protection laws.
We operate a system based on risk assessment whose primary goal is to identify and evaluate the potential sources of danger and threat as well as to take the necessary countermeasures.
We develop rules in order to deal with potential events while taking the specifics of the systems to be protected into account and keeping in mind the requirements of business continuity.
We make sure to prevent the events of information security when possible. We manage and investigate the causes of incidents related to information security and data protection.
We ensure the physical safety of our tools and infrastructure with the help of up-to-date technical tools and well-prepared professionals.
We continuously improve our system in order to prevent trespassing, unauthorized access, deliberate or accidental errors and possibilites of damages.
In order to increase security, we use up-to-date IT solutions while involving information security experts.
We ensure the confidentiality, integrity and availability of the information and the information processing procedures. We regularly review methods of access and permissions.
We constantly develop the information security awareness of our employees in order to achieve our security policy goals,
The procurement of new information systems and the development of existing systems are carried out while taking information security aspects into account.
We set information security goals, for the sake of improving the maturity and the processes of our information security
We evaluate our information security processes annually on management review workshop.
Our main goal is to achieve and maintain the satisfaction of our partners while providing solutions tailored to their needs and business processes. We continuously develop the quality of our services and our internal operation to accomplish this.