INFORMATION SECURITY MANAGEMENT SYSTEM POLICY STATEMENT

We at SOFT SPARK LTD recognize that the maintenance of quality standards for safe and healthy working conditions to protect from all threats, whether internal or external, intentionally or accidental of all the relevant stakeholder and information assets in all activities is the key to our success and reputation.

In order to achieve this we have established measurable objectives that enhance customer satisfaction and align with the aspirations of our stakeholders and employees. Our company has implemented robust procedures within its Information Security Management System to ensure the confidentiality, integrity, and availability of all information assets. These efforts reflect a strong commitment to safeguarding its operational and strategic interests.

The Company aims to ensure:

  • Trained and competent personnel are available focusing on customers& needs and expectations;
  • High quality of service is given providing optimum value to the customer commensurate with cost;
  • Consistent approach towards public, representatives, customer safety and associates / employee's safety;
  • Processes are performed in a cost-effective manner;
  • Information is protected against unauthorized access and maintain confidentiality of information;
  • Information is not disclosed to unauthorized persons through deliberate or careless action;
  • Integrity of information through protection from unauthorized modification.
  • Availability of information to authorized users when needed.
  • Regulatory and legislative requirements are met.
  • Business continuity plans are produced, maintained, and tested as far as practicable.
  • Information security training is given to employees of the organization.
  • All breaches of information security and suspected weaknesses are reported and investigated.
  • Reviewing our performance by conducting inspection and audits.
  • Ensuring and promoting a positive information security and continual improvement.
  • Ensuring the policy is communicated to all associates working for and on behalf of the company and is made available to the public.