Information is one of the main assets of any organization. Thus, the Corporation institutes this Information Security Corporate Policy in order to guarantee compliance with the principles and guidelines related to the protection of information of the organization, its clients and the general public.
All information security policies must be available to all employees and protected against any modifications. The nomenclature and the policy code must not be changed with the same identification as the head office. The information security policy will be annually revised by the head office, forwarded to all other units where the rules are applicable and its publication will be the local unit’s responsibility after head office´s approval.
Assets Management: Information assets shall be individually identified, registered, and protected from undue access and have updated documentation and maintenance plans.