Information Security Policy

Digital Resources a.s., with its registered office in Prague, issues this policy to ensure the information security management system in accordance with ČSN EN ISNO/IEC 27001.That is the Czech version of the international standard ISO/IES 27001:2013.

The management of the company has decided to implement, operate, monitor, review, maintain and continuously improve the information security management system according to the requirements of ČSN EN ISO/IEC 27001 and to meet all applicable requirements related to information security.

Guaranteeing information security through appropriate and adequate constraints is the main objective of our company.

The basic sources for the management of information security are legal regulations, standards, contractual requirements of clients and business partners and recommendations, which must be respected in the Information Security Management process.

To achieve our business aims, we create, process, and maintain information of various nature. It is our primary objective to ensure their security in accordance with applicable regulations and contractual requirements.

Digital Resources a.s. emphasizes employee training, adaptation to information security policies and company directives, e.g., Security, Information Protection, Personal Data Protection – GDPR compliance.

Individual security goals are fulfilled by the Company by means of adequate constrains. These are determined within the framework of the information security risk management process in the areas of security organization, information classification, personnel and physical security, ICT resources management security, access rights security management, in compliance with legislative requirements.