Information Security Policy Statement
Information security is an important precondition for the maintenance and proper functioning of Syntegro's SAAS solutions. The management recognises the need to manage security risks and therefore attaches importance to adequate security of the information provision.
Ensuring that security measures and provisions are taken in the right way is an integral part of Syntegro's general corporate policy. This care also includes setting up and maintaining an adequate information security management system (ISMS) and the corresponding security organisation.
Responsibility for drawing up, maintaining and reviewing the security policy has been entrusted to the Syntegro Data Protection Officer (DPO). Tasks, responsibilities and competences are clearly allocated and delegated with respect to the security measures and facilities. Every employee is responsible for all aspects of information security which fall within their sphere of influence. To this end, everyone within Syntegro must be familiar with the relevant security measures and facilities applicable to him/her.
Events that are (in)directly related to the security measures or facilities, or that could cause a breach of these, are reported in accordance with the internal procedure for reporting incidents. The purpose of incident reporting is to systematically test and improve the quality of information security.
Through objective and periodic testing, Syntegro will keep track of and continuously improve the performance and effectiveness of the ISMS and the necessary security measures and facilities.
Frank De Weser
Data Protection Officer