IMS Policy

Integrated Management System (IMS) Policy

RUNROOM, in accordance with the ISO 27001 standards, the National Security Framework (ENS) Medium category, and the NIS2 Directive, establishes the following principles:

• Ensure the satisfaction of our customers, including stakeholders in the results of the company, in all matters related to the execution of our activities and their impact on society.

• Ensure the security of information within RUNROOM's information systems, as well as the information systems that support the services provided by RUNROOM to its clients.
• Establish objectives and goals focused on assessing performance in information security, as well as continuous improvement in our activities, regulated by the Information Security Management System that develops this policy.
• Comply with the requirements of applicable laws and regulations related to our activities, the commitments made with clients, and any internal standards or guidelines to which RUNROOM is subject.
• Maintain fluid communication both internally, among different departments of the company, and with clients.
• Evaluate and ensure the technical competence of staff, as well as ensure their adequate motivation for participating in the continuous improvement of our processes.
• Ensure the proper condition of facilities and adequate equipment, so that they are in line with the company's activities, objectives, and goals.
• Continuously analyze all relevant processes, implementing appropriate improvements based on the results obtained and the established objectives.
• Promote the continuous improvement of the Integrated Management System that develops this policy.
• Security incidents are communicated and handled appropriately.

These principles are endorsed by RUNROOM’s management, which provides the necessary means and resources to its employees to ensure compliance, and makes them publicly known through this Information Security Policy.