Objective
Objective
RDT Engineers Capital S.L. (hereinafter referred to as RDT), to address issues related to information security management, issues the following Information Security Policy, within the framework of the Information Security Management System implemented in the organization, in accordance with the international reference standard ISO/IEC 27001.
The purpose and objective of this Information Security Policy is to protect the organization’s information assets from all threats, whether internal or external, deliberate or accidental; seeking to ensure the continuity of operations, minimize damage from incidents, and maximize the return on investments and relevant opportunities in its sector.
Information Security Policy
The Senior Management of RDT has approved this Information Security Policy. It is RDT’s policy to ensure that:
- Information, and the systems that support it, will be protected from loss of confidentiality, integrity, and availability.
- Regulatory, legislative, and contractual requirements applicable to information security will be met.
- All information systems subject to this Policy will undergo an information security risk analysis and management process.
- Information security contingency plans will be developed.
- Information security training will be available to all staff.
- All actual or suspected information security breaches will be managed and investigated.
- The commitment to information security of third-party collaborators (service providers, manufacturers, etc.) will be monitored in relation to their own Policies.
- The implemented Information Security Management System will be continuously improved.
- Various procedures and technical instructions have been developed to support this Policy.
- Information security management at RDT falls under the responsibility of the organization’s Information Security Management Committee.
- This Policy will be reviewed at least annually, and, on an unplanned basis, in the event of any security incident that could have a significant impact on information security.
- All department heads are directly responsible for implementing this Information Security Policy within their departments.
- It is the responsibility of every RDT employee to comply with the Information Security Policy.
This Information Security Policy is publicized, understood, implemented, and updated at all levels of the company, being reviewed annually for its adequacy and extraordinarily when special situations arise, and made available to interested parties.
As General Manager, you have my full support and commitment to ensure its compliance within my scope of responsibility.
Benjamín Rosende
CEO, RDT
