Skip to main content Sitemap

Creatim's commitment to information protection

At Creatim, continuous education and innovation are vital in keeping pace with global digital product developments, including information security. The quality of our solutions significantly impacts our clients' business risks, making it essential to continuously improve the processes of ensuring the security of our clients' and their users' business and personal data. Our strategy is to stay one step ahead of the competition in this field.

1.1. The objectives of the information protection policy are::

a)          a) Increasing the effectiveness of the information management system based on the principles of

  • Confidentiality: access to sensitive information (personal data and trade secrets) is granted only to authorized persons bound to respect confidentiality.
  • Integrity: protecting the accuracy and completeness of information by preventing unauthorized changes.
  • Availability: ensuring authorized persons have access to information and related resources when needed.

b)          Increasing awareness of employees and contractual partners through information and education about security risks and protection methods.

c)          Reducing the likelihood of information security incidents through preventive measures such as penetration tests, verification of practical procedures for coordinated response in case of critical incidents, ensuring business continuity, and using multi-factor authentication.

 

1.2. Information Protection Measures and Policies

a)          Use of verified tools and protocols for ensuring information security

We only use digital tools and services that comply with legislation and follow best practices in information security. We protect data at rest and in transit using advanced encryption techniques, ensuring compliance with GDPR and other relevant data protection regulations.

b)         Risk Management

We regularly conduct risk assessments to identify potential vulnerabilities. We develop comprehensive risk management plans and execute critical event scenarios to detect vulnerabilities and implement effective strategies for their elimination.

c)          Employee Training and Awareness

Our employees regularly undergo information security training, promoting a security culture within the organization.

d)         Security Aspects of Digital Solutions Development

Security is an integral part of the design of digital products we develop at Creatim (security by design). We continuously search for vulnerabilities in code and related third-party components.

e)          Partnership Collaboration

We only work with partners and third-party providers who ensure comparable information security to that of Creatim in their services. Appropriate security assurances are an integral part of business contracts.

f)           Compliance with ISMS Policy

Systems and processes are regularly audited to ensure compliance with internal policies and external information security regulations.

 

Our commitment to excellence in information security enables us to offer solutions in accordance with best practices and international standards in this field.