Information Security Policy

SISCOG is committed to ensuring a high level of information security, grounded in the principles of confidentiality, integrity, and availability, and aligned with its purpose and commitment to clients, as a foundation for trust, innovation, and reliable products and services.

To achieve this, SISCOG:

• Protects the information under its responsibility through an Information Security Management System based on risk analysis and management, promoting continuous improvement and operational excellence.
• Complies with applicable legal, regulatory and contractual requirements, acting with respect for the obligations undertaken.
• Protects its most relevant information assets, including source code and the information of customers, partners, and third parties, as well as all information related to its activities.
• Protects information against internal and external threats through effective vulnerability and risk management.
• Prevents, detects, and responds to information security incidents in an appropriate and responsible manner.
• Raises awareness and engages employees and interested parties in complying with established information security policies and procedures.

This policy applies across the entire organization and is supported by SISCOG’s Integrated Management System.