Quality and security policy

TERADISK CONSULTING, SL

As a company dedicated to the provision of Digital Transformation Services, it openly states its intention to offer competitive services to all its clients; for this reason, it has implemented a quality and information security management system within the organisation, whose main objective is to achieve the satisfaction expected by clients, through established processes based on a process of continuous improvement, guaranteeing the continuity of the information systems, minimising the risks of damage and ensuring compliance with the objectives set to ensure the confidentiality, integrity and availability of the information at all times.

To this end, it assumes its commitment to quality and information security in accordance with the UNE/EN-ISO 9001:2015 and ISO/IEC 27001:2013 reference standards, for which the Senior Management establishes the following principles:

Top management competence and leadership as a commitment to develop the Quality and Information Security Management System.

Identify the internal and external stakeholders that are relevant to the quality management system and meet their requirements.

Understand the organisational context and identify organisational opportunities and risks as a basis for action planning to address, manage or deal with them.

To ensure the satisfaction of our customers, including the parties interested in the company’s results, in all matters relating to the performance of our activities and their impact on society.

Establish objectives and goals focused on quality performance evaluation, as well as continuous improvement in our activities, regulated in the Management System that develops this policy.

Compliance with the requirements of the legislation applicable and regulatory to our activity, the commitments acquired with clients and interested parties and all those internal rules or guidelines to which the company is subject.

To ensure the confidentiality of the data managed by the company and the availability of the information systems, both in the services offered to clients and in internal management, avoiding undue alterations to the information.

Ensure emergency response capability, restoring critical services to operation in the shortest possible time.

Establish appropriate measures for the treatment of risks arising from the identification and assessment of assets.
Motivate and train all personnel working in the organisation, both for the correct performance of their job and to act in accordance with the requirements imposed by the reference standard, providing a suitable environment for the operation of the processes.

Maintaining fluid communication both internally, between the different levels of the company, as well as with clients.

Evaluating and guaranteeing the technical competence of staff in the performance of their duties, as well as ensuring that they are adequately motivated to participate in the continuous improvement of our processes.

Ensuring the correct state of the facilities and adequate equipment, so that they are in line with the activity, objectives and goals of the company.

Ensure a continuous analysis of all relevant processes, establishing the relevant improvements in each case, depending on the results obtained and the established objectives.

These principles are assumed by the Senior Management, which has the necessary means and provides its employees with sufficient resources to comply with them, and which makes them public through this Quality and Information Security Policy.

Teradisk Management