Information security policy

CIM ECM ENGINEERING, S.L. is a company that offers information management consulting services. Our staff, highly trained to carry out their work, is composed of some of the best technicians and trainers in the sector, being their technical experience and good treatment, undoubtedly, the main guarantee for a quality service.

CIM ECM ENGINEERING, S.L. also considers the importance of the information it manages as well as the assets and working methods applied. Integral security in an organization should encompass not only physical and operational security, but also information security, cybersecurity, information technology security, network security, business continuity, as well as any other relevant area or function whose objective is corporate protection against potential damage. This reason has led CIM ECM ENGINEERING, S.L. to implement and maintain an Information Security Management System (ISMS), which allows customers and suppliers to guarantee the security of protection of shared information, as well as offering quality service.

CIM ECM ENGINEERING, S.L. establishes its Policy based on the following values:

1. Responsibility: Ensure that business activities are conducted within the framework of sustainability and accountability to stakeholders and society as a whole.
2. Customer Orientation: Provide maximum compliance with requirements and exceed the expectations entrusted to the company by customers and stakeholders, also ensuring the information they provide us.
3. Professionalism: Provide the highest technical and personal knowledge for all the projects entrusted to us by our clients.
4. Confidentiality: Take the utmost caution in the use of trusted data likely to be used for illegitimate purposes.
5. Safety: Comply with applicable requirements: Contractual, regulatory and other specified. This policy aims to set guidelines to ensure the confidentiality of information, the integrity of information and the availability of information
6. Integrity of the person: Provide people with a decent work environment and individual development for optimal performance of their capabilities in fulfilling their responsibilities.
7. Infrastructure: Enabling and managing the precise equipment, applications and technological tools that ensure the preservation and safekeeping of information.
8. Continuous improvement: Have a real commitment to continuous improvement and effective management of business processes.
9. Profitability: Ensure the economic and financial viability of the company as a result of achieving business objectives and improving productivity.

The management will establish, within the General Policy of CIM ECM ENGINEERING, S.L. the plans and resources necessary to achieve the objectives established in this policy. CIM ECM ENGINEERING, S.L. is committed to promoting an understanding and dissemination of our policy within our organization, through training and continuous communication with our employees and collaborators. This Policy provides a frame of reference for establishing and reviewing the objectives of the Quality and Information Security system, being communicated to the whole Organization, presented to all interested parties and reviewed annually for adequacy as deemed necessary.