Information Security Policy
Malthe Winje is committed to maintaining robust information security to protect our own and our customers’ assets and to ensure the integrity of our services. Security requirements and needs will be based on risk assessments and regulatory considerations.
We adhere to international standards such as ISO/IEC 27001.
Our core framework for information security work includes the following:
- Protection of Customer Assets: We ensure that our own and our customers’ assets are identified and managed to prevent loss, corruption, misuse, or accidental exposure.
- Securing Processes and Systems: Our processes, systems, services, and products are carefully designed and used to ensure their availability, integrity, and confidentiality.
- Employee Awareness: All employees are thoroughly familiar with our security policy and receive ongoing security training to ensure a unified approach to information security.
- Supplier Collaboration: We require our suppliers and partners to comply with our strict information security requirements.
- Incident Management: We work proactively to prevent unwanted incidents and are committed to learning from incidents that occur to continuously improve our security procedures.
The information security policy is regularly revised by the company’s management and elected representatives. We are committed to complying with the requirements of ISO 27001:2022, relevant laws and regulations, as well as our own imposed requirements. We are also committed to continuously developing and improving our management systems.
Update history
31.10.2024