top of page

INFORMATION SECURITY POLICY

The protection of IT resources and the data processed and stored by them is extremely important for the operation of Gill & Murry and its customers, which is the basic interest and duty of all employees and contracted partners.  Our goal is to ensure the confidentiality, integrity, and availability of data, information, and information processing processes by establishing processes that check their availability and building them into business processes, as well as by regularly reviewing these controls.

 

The tasks related to the planning, implementation, operation and control of the info-communication, IT and information systems managed by Gill & Murry must be carried out in such a way that the protection of the systems meets the legal requirements and the cost of the protection is proportionate to the potential damage value.

 

To this end:

  • We designed, built and are continuously developing our Information Security management system according to the requirements defined in the MSZ ISO/IEC 27001:2014 standard.

  • We ensure that the likelihood of information security incidents and disruptions and the damage caused by them are minimized, and incidents are investigated in documented form.

  • We ensure that users are aware of information security threats and have all the knowledge necessary to consciously comply with the provisions of the organization's security policy.

  • Information and information processing devices are protected from access, modification and theft by unauthorized persons.

  • We take care of the accurate and safe operation of information processing devices by following and enforcing documented operating procedures, planning and controlling changes.

  • As a result of the Company's operation, we pay special attention to the management and storage of personal data in order to comply with the EU General Data Protection Regulation No. 2016/679 and the relevant Hungarian legal requirements.

  • The procurement of new information systems and the development of existing systems are carried out with full consideration of information security aspects.

  • We set information security goals at regular intervals with the aim of maintaining and improving the quality of the IBIR system.

 

 

Budapest, 2022. augusztus 8.         _cc781905-5cde-3194-bb3b -136bad5cf58d_           _cc781905-5cde -3194-bb3b-136bad5cf58d_         _cc781905-5cde-3194-bb3b- 136bad5cf58d_       András Zsolt Sándor

      Executive Director

bottom of page