Central Security Policy Information

EFFECT's Management is committed to the implementation and continuous improvement of the effectiveness of the Information Security Management System, as well as to the allocation of all financial, technical and human resources required for its operation through the Management Review on an annual basis

The measure of success of the Central Information Security Policy and the individual Security Policies is the achievement of specific objectives and the instillation of confidence in every business partner for the integrity and security of information. The general security objectives set by EFFECT are:

• Ongoing awareness, training and motivation of EFFECT staff on the importance of developing and implementing the ISMS, as well as the importance of active participation and compliance of staff with security requirements and customer expectations.
• The absence of cracks and general safety incidents
• The effective use of resources
• Full compliance with the requirements of legislation relating to the Safety Information

For these reasons, the EFFECT:

• Develops and implements Policies and Procedures, specifying the Central Policy and ensure the integrity of information from internal and external risks.
• Inspire confidence in any user that is acting in accordance with certified international standards, laws and regulations, and contractual requirements for the security of information systems.
• Protects the assets and information from threats (internal and external) and risks.
• Ensures the safe keeping of confidential information and ensure unauthorized access.
• Is committed to continuously improving the Information Security Management System, the establishment and regular review of measurable safety objectives.
• Apply procedures for the identification and assessment of risks and their impacts to protected information.
• Take all necessary actions, in order to communicate the Central and the individual Security Policies in each of the interested party.

EFFECT ensures that all its staff as well as stakeholders (customers, suppliers, etc.) are aware of the Central Information Security Policy and the implementation of the Information Security Management System and that the applicable individual Policies are easily accessible.