Política de Seguridad de Información y Continuidad de Negocio

Itbid is aware that the security of information relating to our customers is a critical resource, has established an Information Security Management System according to the requirements of ISO/IEC 27001:2022 to ensure the continuity of information systems, minimize the risk of damage and ensure compliance with the objectives set.

The objective of the Security Policy is to set the necessary framework for action to protect information resources against threats, internal or external, deliberate or accidental, in order to ensure compliance with the confidentiality, integrity and availability of information.

The effectiveness and implementation of the Information Security Management System is the direct responsibility of the Information Security Committee, which is responsible for the approval, dissemination and compliance with this Security Policy. In its name and on its behalf, an Information Security Management System Manager has been appointed, who has sufficient authority to play an active role in the Information Security Management System, supervising its implementation, development and maintenance.

The Information Security Committee shall develop and approve the risk analysis methodology used in the Information Security Management System.

Any person whose activity may be directly or indirectly affected by the requirements of the Information Security Management System is obliged to strictly comply with the Security Policy.

Itbid will implement all the necessary measures to comply with the applicable regulations regarding security in general and IT security, related to IT policy, security of buildings and facilities and the behavior of employees and third parties associated with itbid in the use of IT systems. The necessary measures to ensure the security of information through the application of standards, procedures and controls shall ensure the confidentiality, integrity and availability of information, essential to:

  • Comply with current legislation on information systems.
  • Ensure the confidentiality of the data managed by itbid.
  • Ensure the availability of information systems, both in the services offered to customers and in internal management.
  • To ensure the capacity to respond to emergency situations, restoring the operation of critical services in the shortest possible time.
  • To avoid undue alterations to information.
  • Promote awareness and training in information security.
  • Establish objectives and goals focused on the evaluation of information security performance, as well as continuous improvement in our activities, regulated in the Management System that develops this policy.

BUSINESS CONTINUITY POLICY

ITBID TECHNOLOGIES 2002, SL has as a policy to maintain a Business Continuity Management System (hereinafter BCMS) that:

  • Identifies potential threats to ITBID TECHNOLOGIES 2002, SL, as well as the impact on business operations, should they materialize, may cause.
  • Provide a framework to increase the resilience of ITBID TECHNOLOGIES 2002, SL to provide an effective response.
  • Ensure the rapid and efficient recovery of essential operations in the face of any physical and logical disaster that may occur or other incident that jeopardizes the continuity of operations of the service provided to customers.
  • Preserve the interests of its key stakeholders (customers, employees and suppliers), reputation, brand and value creation activities.

To ensure that the BCMS is aligned with the changing needs of ITBID TECHNOLOGIES 2002, SL, continuity plans will be regularly tested, continuously reviewed and regularly audited.

A risk analysis has been performed, assessing the impacts and business objectives for the prevention and definition of recovery levels, prioritizing Business Continuity in critical activities:

"Information Security Systems that support the development and commercialization of modules for the management of purchases in cloud technology and based on the SaaS modality".

The BCMS has been elaborated following the instructions and under the supervision of the Management of ITBID TECHNOLOGIES 2002, SL. It has been designed to guarantee the services provided to customers and to facilitate the return to normal operations in the shortest possible time and with the minimum disruption. Management fully supports the BCMS and expects that all personnel will be aware of its contents and that the plans will be ready to be activated at any time.

Barcelona, January 09, 2023
Signed: Josep Puig (Management ITBID Technologies 2002, SL)

Este sitio web utiliza cookies para que usted tenga la mejor experiencia de usuario. Si continúa navegando está dando su consentimiento para la aceptación de las mencionadas cookies y la aceptación de nuestra cookie policy., pinche el enlace para mayor información.plugin cookies

ACEPTAR
Aviso de cookies