1. Introduction
At Uptrust, we are committed to protecting our information and systems from unauthorized access, loss, destruction, and cyber-attacks. This Information Security Policy (ISP) outlines the measures we implement to ensure the security of our data and systems, in line with best practices and applicable legal regulations.
2. Security Policy Objectives
- Confidentiality Protection: Ensuring that sensitive information is accessible only to authorized personnel.
- Data Integrity: Ensuring that information is accurate and complete, without unauthorized modifications.
- Service Availability: Ensuring uninterrupted access to information and services for authorized users.
3. Implemented Security Measures
- Access Controls: Access to sensitive data and critical systems is restricted based on necessity and rights assigned to authorized employees and collaborators.
- Encryption: We use encryption to protect data in transit and at rest, according to industry standards.
- Monitoring and Auditing: We implement monitoring solutions to detect and respond quickly to suspicious activities. Periodic audits are conducted to assess compliance with our security policy.
- Incident Management: We have a security incident response plan to effectively manage any security breaches, including notifying competent authorities and affected individuals if necessary.
- Training and Awareness: We conduct training sessions for employees to educate them on best security practices and associated risks.
4. User Rights and Responsibilities
Users are responsible for:
- Access Protection: Maintaining the confidentiality of authentication data and immediately reporting any suspected account compromise.
- Problem Reporting: Promptly notifying the Uptrust security team of any observed security vulnerabilities or incidents.
5. Legal Compliance and Regulations
We comply with applicable data protection laws, including the European Union’s General Data Protection Regulation (GDPR) and other relevant regulations. We are committed to adhering to all legal requirements concerning the protection and management of personal data.
6. Policy Review and Update
This policy is periodically reviewed to reflect changes in regulations, technology, and security practices. Any significant changes will be communicated to users through our website or other appropriate channels.
7. Contact
For further questions or to report a security issue, please contact our security team at:
Email: security@uptrust.eu
Phone: +40 725 514 153 Mailing
Address: 11A Gospodarilor Street, Cluj-Napoca, Cluj County, Romania
Thank you for using the services of UPTRUST CYBERSEC SRL, www.uptrust.eu.