DEMO

Information Security Policy

Introduction

The Information Security Policy (hereinafter, the Policy) aims to adopt a set of measures designed to preserve the confidentiality, integrity, and availability of information, which constitute the three basic components of information security. Its objective is to establish the requirements to protect the information, equipment, and technological services that support the main business processes of FLAME ANALYTICS, S.L.

Objective

The main objective of this high-level Policy is to define the basic principles and rules for managing information security. The ultimate goal is for the company to ensure the security of information and minimize the risks of impact caused by ineffective management, particularly regarding the dimensions that affect the privacy of our customers’ data and the availability of our services.

The definition of our Information Security Policy is based on the analysis of our mission, vision, and values:

  • Mission: To make physical spaces smarter and more digital through the development and commercialization of analytics and Big Data tools to analyze people’s behavior and the performance of these spaces.
  • Vision: To be global leaders in digital analytics solutions for physical spaces.
  • Values:
    • Respect for people’s privacy
    • Professionalism
    • Empathy
    • Integrity
    • Balance
    • Excellence
    • Security

Scope

FLAME ANALYTICS S.L. (Flame) has an Information Security Management System based on the ISO 27001 standard, in its current version, which applies to the following scope: The information systems that support the commercialization, delivery, operation, and maintenance activities of the Flame Analytics SaaS platform for physical space analytics.

Management Commitment

The management of FLAME ANALYTICS is fully committed to:

  • Compliance with applicable legal and regulatory requirements, as well as the requirements established in our management system and those set by our customers and stakeholders.
  • The continuous improvement of the Information Security Management System.
  • Setting Information Security objectives consistent with this policy. These objectives will aim to ensure the security of information across three dimensions: confidentiality, availability, and integrity.
  • Considering information security risks in decision-making processes.

This policy will be communicated and made available to all interested parties.

MANAGEMENT