Introduction
The Information Security Policy (hereinafter referred to as the Policy) aims to implement a set of measures designed to preserve the confidentiality, integrity, and availability of information, which constitute the three basic components of information security. Its objective is to establish the requirements for protecting the information, equipment, and technological services that support the main business processes of FLAME ANALYTICS, S.L.
Objective
The main objective of this high-level Policy is to define the principles and basic rules for information security management. The ultimate goal is to ensure that the company guarantees information security and minimizes the risks of an impact caused by ineffective management, especially concerning aspects that affect the privacy of our customers’ data and the availability of our services.
The definition of our Information Security Policy is based on the analysis of our mission, vision, and values:
- Mission: To make physical spaces smarter and digital through the development and marketing of analytics and Big Data tools to analyze the behavior of people and the performance of these spaces.
- Vision: To be global leaders in digital analytics solutions for physical spaces.
- Values: Respect for people’s privacy Professionalism Empathy Integrity Balance Excellence Security
Scope
FLAME ANALYTICS S.L. (Flame) has an Information Security Management System based on ISO 27001, in its current revision, with the scope covering the information systems that support the marketing, delivery, operation, and maintenance of the Flame Analytics SaaS platform for physical space analytics.
Management Commitment
The management of FLAME ANALYTICS is fully committed to: Complying with applicable legal and regulatory requirements, as well as the requirements established in our management system and those defined by our clients and stakeholders. Continuously improving the Information Security Management System. Establishing Information Security objectives consistent with this policy. These objectives will be aimed at ensuring information security in the three dimensions: confidentiality, availability, and integrity. Considering information security risks in decision-making.
This policy will be communicated and made available to all stakeholders simultaneously.
THE MANAGEMENT