Issue Date: 19–AUG–2024
1.0 Introduction
NVOY Technologies Limited, which provides Scalable IT for fast growing companies helps fast growing companies develop and deploy a cloud first scalable IT strategy and provide a full managed service for IT support. The service is ideal for fast growing companies and gives a flexible per user per month purchasing model for IT support, along with the advantage to add other important services as needed, like project work, IT supply, cloud software billing and consultancy services (e.g. ISO compliance).
NVOY Technologies LTD , is committed to preserving the confidentiality, integrity and availability of all assets, including personally identifiable information (PII), in scope of the information security management system (ISMS) in order to compete in the marketplace and maintain its legal, regulatory and contractual compliance and commercial image.
NVOY Technologies Limited is committed to ensuring compliance with all applicable legislative, regulatory and contract requirements, including all applicable PII protection legislation. To achieve this, NVOY Technologies Limited has implemented an ISMS in accordance with the international standard ISO/EIC27001:2013. The ISMS is subject to continual, systematic review and improvement.
2.0 Policy objectives
- Information is made available to all authorised parties with minimal disruption to the business processes.
- Information security and privacy risks are managed.
- The integrity of this information is maintained.
- Confidentiality of information is preserved.
- Regulatory, legislative and other applicable requirements related to information security are met.
- Appropriate information security and privacy objectives are defined and measured.
- Appropriate business continuity arrangements are in place to counteract interruptions to business activities and these take account of information security.
- Appropriate information security and privacy education, awareness and training is available to staff and relevant others, e.g.suppliers, working on behalf of NVOY Technologies Limited.
- Breaches of information security or privacy and security incidents, actual orsuspected, are reported and investigated through the appropriate processes.
- Appropriate access control is maintained and information is protected against unauthorised access.
- Continual improvement of the ISMS is made as and when appropriate.
- Commitment to achieving, supporting and managing compliance with all applicable PII legislation, including the contractual terms agreed between NVOY Technologies Limited and its clients.
3.0 Roles and responsibilities
Roles and responsibilities are defined for ISMS.