Information Security Policy

At Certiff B.V., we recognize how crucial information is to the success of our organization. We understand that protecting this information is essential for maintaining the trust of our customers, partners, and employees. Therefore, we are fully committed to safeguarding the confidentiality, integrity, and availability of all information we manage through our Information Security Management System (ISMS). 

Our Objectives 

With our ISMS, we aim to: 

  • Protect Information: Ensure that all company and customer information is protected against unauthorized access, loss, or damage. 
  • Comply with Laws and Regulations: Adhere to all relevant laws, regulations, and contractual obligations related to information security. 
  • Manage Risks: Actively identify, evaluate, and take appropriate measures to control risks. 
  • Increase Awareness: Make our employees aware of their role and responsibility in protecting information. 

Our Commitment to Compliance 

We promise to comply with all applicable laws and regulations regarding information security. Additionally, we meet the requirements and expectations of our customers and other stakeholders to ensure their trust in our services. 

Risk Management 

We take a proactive approach to managing information security risks: 

  • Identification: Regularly assess our processes to discover potential risks. 
  • Evaluation: Analyze identified risks to understand their potential impact. 
  • Control: Implement appropriate controls and measures to minimize or eliminate risks. 

Management Involvement 

Our management team plays an active role in supporting and enhancing the ISMS: 

  • Leadership: They set an example and emphasize the importance of information security within the organization. 
  • Resources: Provide sufficient resources and support to achieve our information security goals. 
  • Participation: Involved in establishing policies and making decisions that affect information security. 

Continuous Improvement 

We strive to continually improve our ISMS by: 

  • Monitoring and Evaluation: Regularly reviewing and measuring the performance of our ISMS. 
  • Feedback: Utilizing feedback from employees, customers, and audits to implement improvements. 
  • Adaptation: Adjusting our policies and procedures to changes in legislation, technology, or business activities. 

Communication and Accessibility 

We believe it’s important that everyone within Certiff B.V. understands and applies the information security policy: 

  • Accessibility: The policy is available to all employees via our intranet portal and is shared with relevant stakeholders. 
  • Training: Regularly offer training and workshops to enhance awareness and knowledge about information security. 
  • Open Dialogue: Encourage employees to ask questions and express concerns about information security. 

Review and Update of the Policy 

To ensure that our information security policy remains up-to-date and effective: 

  • Regular Review: Evaluate the policy annually or when significant changes occur in our operations or environment. 
  • Communicating Changes: Promptly communicate any updates or changes to the policy to all employees. 
  • Responsibility: Management is responsible for initiating and approving policy changes. 

 

By adhering to these principles, we at Certiff B.V. aim not only to protect our information but also to create a culture where everyone contributes to a safe and reliable working environment. We believe that information security is a shared responsibility and rely on everyone’s commitment to achieve this. 

Can Pekdemir, 
Founder & CEO 
26-01-2024 

en_GBEnglish (UK)