Security and protection of personal data policy
The business success of ABC Informatic d.o.o. is based on achieving a high level of information security of our products and services and protection of personal data given to us for processing, as well as meeting the expectations and needs of our customers and users of related products and services through:
- Timely realization of assumed contractual obligations
- Continuous development and improvement of existing IT solutions, ensuring the application of the latest tools and trends in the IT industry
- Reducing the risk of damage or loss of information due to internal, external, accidental or deliberate threats and prevention of security incidents through the reduction of their potential impact by a continuous application of the methodology of risk assessment and management of the same.
The protection of personal data and compliance with Regulation (EU) 2016/679 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (GDPR) and applicable legislation is a key component in gaining and maintaining the trust of employees, customers / users, and all other stakeholders.
When we process personal data, they must always be: lawfully, fairly and transparently processed, in accordance with the rights of the data subjects and protected by appropriate technical and organizational measures taken against unauthorized or unlawful processing.
We strive to achieve information security through the application of a system that is established and maintained according to the requirements of ISO 27001:2013.
Company management regularly establishes annual goals, so as to enable the realization of the policy and objectives of information security. The strategic guidelines for setting these goals are as follows:
- Recognize current and future needs and expectations of stakeholders
- Apply the best available technologies and processes, which will contribute to improving the quality, reliability and safety of products, services and information.
- Ensure constant education in order to develop expertise, knowledge and training, create a supportive environment and provide the necessary resources
- Adopt new IT tools and technologies in the realization of products and be a leader in Croatia in monitoring world trends in information technology and security
- Establish long-term relationships with business partners and stakeholders and involve them in achieving the goals and policies set out here.
- Ensure fair and transparent processing of personal data of users of our products and services, as well as our employees and other stakeholders.
Approved by:
CEO: Amir Brkovic
Dubrovnik, February 18, 2019