SECURITY POLICY

LINGUASERVE is fully committed to Information Security, ensuring it is upheld across various areas of our operations. Our dedication to clients, employees, suppliers, and institutions drives us to implement measures that guarantee the accuracy and availability of the information we handle whenever it is needed.

To safeguard this information, LINGUASERVE has established robust controls to prevent unauthorized access. Our security policy is founded on the following core principles, in line with ISO/IEC 27001:2013 standards, ensuring the quality of our products, services, and the confidentiality, integrity, availability, authenticity, and traceability of our information systems:

  • Management Commitment. Information security is a priority at all levels of management, ensuring it integrates seamlessly with LINGUASERVE’s broader strategic initiatives. General Management actively ensures the compliance, continuous updating, and approval of this policy, providing all necessary resources—financial and logistical—to establish, implement, maintain, and improve our information security management system.
  • Comprehensive Process. Security is approached holistically, encompassing all technical, human, material, and organizational elements within the system. Information security is an integral part of our daily operations and is embedded from the very beginning, starting with the design of our information systems.
  • Risk-Based Security Management. We continuously evaluate and study potential risks that could jeopardize service quality or the security of managed information. Based on the criticality of these risks, we apply targeted measures to mitigate them, with regular evaluations to monitor the effectiveness of our risk management approach.
  • Prevention, Reaction, and Recovery. Our security framework includes prevention, detection, and correction strategies to protect information and maintain service quality. We conduct regular review cycles, focusing on risk planning, mitigation strategies, and subsequent reassessments to ensure continued effectiveness.
  • Line of Defense: We implement robust mechanisms to guarantee the availability of information systems and ensure service continuity. Our approach prioritizes swift and effective responses to incidents, minimizing the risk of service disruption.
  • Periodic Re-evaluation. Management performs regular evaluations to ensure the quality of service delivery and the effectiveness of security measures, adapting them to evolving risks and continuously improving the system.
  • Clear Responsibility. We clearly define roles within our information systems: the information owner establishes the security requirements for processed information; the service owner defines the security needs of the services provided; and the security officer makes decisions to meet all security requirements.

 

In developing our Security Policies, LINGUASERVE adheres to the Integrated Management System and complies with all applicable legal and regulatory frameworks.

This Security Policy, version 2.1, was approved by LINGUASERVE Management on 31/01/2023.