CYBERSECURITY POLICY
APEIROO LABS, S.L. is a cybersecurity company with more than 20 years of experience, whose mission is to prevent and manage the risks of people and organizations through the protection of their most important asset: information.
Aware of the value of our clients’ information security, APEIROO LABS, S.L. has established an Information Security Management System in accordance with the UNE-ISO/IEC 27001:2022 standard requirements to ensure the continuity of information systems, minimize damage risks, and ensure compliance with the set goal, which is the necessary framework to protect information resources against threats, whether internal or external, deliberate or accidental, in order to ensure the confidentiality, integrity, and availability of information. Likewise, all necessary measures will be implemented to comply with the applicable security regulations concerning computer policy, building and facility security, and the behavior of employees and third parties associated with APEIROO LABS, S.L. in the use of information systems.
At APEIROO LABS, S.L., we are committed to Quality, and for this reason, a Quality Management System has been established in accordance with the requirements of the UNE-ISO/IEC 9001:2015 and UNE-ISO/IEC 20000-1:2018 standard to achieve maximum knowledge of our services and thus be able to offer rigor in recommendations, agility in timing, flexibility in approaches, and total commitment to our clients. We seek excellence in all our services by offering the implementation of advanced systems with customized solutions according to our clients’ needs.
This Policy is understood, implemented, and maintained up to date at all levels of the organization and has the total commitment and support of the Management of APEIROO LABS, S.L.
APEIROO LABS, S.L. establishes the following Security and Quality Policy guidelines:
- Provide workers with the necessary skills and knowledge for the proper performance of their functions and promote awareness and training in information security.
- Maintain a commitment to the continuous improvement of processes, procedures, products, and services through the use of quality indicators.
-
Use standard work procedures, methodologies, and tools, and perform internal audits to ensure their correct use.
-
Keep the planning of all projects up to date and carry out the necessary monitoring and control to ensure the achievement of the established objectives in terms of time, cost, and quality.
-
Identify and control project risks and implement mitigation or contingency measures.
-
Ensure the correct implementation of the requirements agreed with the client and manage any change in a controlled manner.
-
Analyze different solution alternatives and select, design, and implement the solution that best fits the required functionality.
-
Ensure the availability of information systems, both in services offered to clients and in internal management.
-
Guarantee and validate with the client that the system meets the expected functionality.
-
Ensure the confidentiality, integrity, and availability of data.
-
Prevent undue alterations in the information.
-
Control all changes made in project deliverables and ensure the correct deployment of developments to the client’s production environment.
-
Comply with current legislation on information systems.
This Policy is understood, implemented, and maintained up to date at all levels of the organization and has the total commitment and support of the Management of APEIROO LABS, S.L.