Policy on Information Security and the Protection of Processed Personal Data
Fundación Esade aims to ensure that data security and privacy policy principles are an integral part of its corporate culture. For this reason, it has implemented an Information and Privacy Security Management System (referred to collectively hereafter as “Information Management System” or IMS) based on the internationally recognized ISO27001 standard and its extension for privacy, the ISO27701 standard.
This document aims to provide norms and guidelines that the entire Esade community has to comply with in order to ensure the security of our information and protect the personal data processed by Fundació Esade from any possible incidents and a wide variety of security and privacy threats. Specifically, the objective is to:
- Ensure the security of the operations carried out via Esade’s IT systems.
- Minimize the risk of damaging the information and data and prevent any undue access to personal data.
- Ensure Esade’s objectives are met.
- Ensure all currently valid norms and legislation are complied with.