Prognosys Solutions

Prognosys Solutions logo
Main Menu
Prognosys Solutions logo
Flyout Menu

Information Security Policy

It is the policy of A.E. Prognosys Solutions Limited to:

  • Strive to satisfy the requirements of all of our customers, stakeholders and interested parties whenever possible, meeting and exceeding their expectations.
  • Make the details of our policy known to all other interested parties including external where appropriate and determine the need for communication and by what methods relevant to the information security management system.
  • Comply with all legal requirements, codes of practice and all other requirements applicable to our activities; therefore, as a company, we are committed to satisfy applicable requirements related to information security and continual improvement of the ISMS.
  • Protect the confidentiality, integrity and availability of information.
  • Protect information against unauthorized access.
  • Ensure that all employees are made aware of their individual obligations in respect of this information security policy.
  • Maintain a management system that will achieve these objectives and seek continual improvement in the effectiveness and performance of our management systems based on “risk”.
  • Provide all the resources of equipment, trained and competent staff and any other requirements to enable these objectives to be met.

 

Organizational Objectives

We aim to provide professional, secure and high-quality software and service to our clients. In order to demonstrate our intentions, Our Top Management Team will analyze:

  • Customer feedback / complaints
  • Security breaches
  • Support cases
  • (Regression) Test Results

To ensure that our objectives are being met.

ISMS Specific Objectives

  • To enable the business to operate and deliver its services within a secure environment and that business risks are kept to a minimum.
  • To ensure that employees, and any other interested parties are made aware of the importance of Information Security.
  • To ensure that regulatory and legislative requirements, GDPR for example, codes of practice and all other requirements applicable to our activities are met.
  • To ensure that information, whether stored in computer systems, databases or manual filing methods, is kept safe and secure.
  • Help prevent or minimize the impact of information security incidents or breaches to protect our business, reputation and to safeguard our people.

More information can be found in the ‘ISMS-L1-010 Information Security Objectives’ alongside measurements and improvement upon all objectives assigned by the ISMS Manager and Top Management.

 

Approved and signed by:

CEO – Elias Afxentiou