Security policy

We inform our clients and suppliers of the existence of Information Security Guidelines established in our organization to show Koobinenvent’s commitment to the protection and guarantee of the principles of: confidentiality, integrity, availability, authenticity and traceability of the information handled in the organization.

We work under an Information Security Management System, the scope of which not only affects the use of assets, but also extends to all persons and third parties who are aware of and comply with these Guidelines, structured in accordance with the ISO/IEC standard 27001:2013, and the National Security Scheme (Esquema Nacional de Seguridad – ENS). Both the Policy and the Information Security Guidelines are in line with the General Data Protection Regulation (GDPR).

This security regulation affects the following fields of the Organization: 

  • Access to facilities. In which the access rules are regulated, making special mention of access to secure areas and regulation of access to people outside the organization.
  • Access to corporate network. Corporate resources are protected with the necessary technical security means to ensure the protection of information, either from the facilities themselves or externally. Access and use of information are regulated by rules focused on protection with special attention to sensitive or confidential information.
  • Use of assets. People at Koobinevent undertake to make rational use and ensure the care of the equipment provided by the Organization for the performance of their duties and tasks. In this sense, rules of action are described and configurations areapplied aimed at the protection of the information contained in these devices.
  • Internet usage. Special attention is paid to regulating the use of the Internet, email, and cloud storage for professional uses in order to minimize risks that may occur with unregulated use of these tools.
  • Incident management. The involvement of Koobinevent’s people in security matters helps to detect possible problems that could jeopardize the confidentiality, integrity and availability of the services or assets they support.
  • Business continuity. All the means implemented for the availability and continuity of the business are in line with the requirements of the certified ISO schemes in the organization.
  • Intellectual property. Protected with the commitment of the people of Koobinevent in accordance with the confidentiality rules of the organization.

Violation of the Security Policies and guidelines are subject to sanctions in accordance with the mechanisms enabled in current legislation.

Both the security policy and the guidelines are periodically reviewed to align them with the needs of the organization.

The Cybersecurity Committee is aware of the importance of these Policies and actively participates in their review.

Our main responsibility is to offer our clients innovative solutions and services with high quality standards. As a sign of guarantee and confidence for our clients, Koobinevent periodically undergoes independent audits for the certification of its management and production systems in accordance with the main international standards, among which are:

  • ISO 27001: Certification of Information Security Management Systems (ISMS).
  • ENS: National Security Scheme (Esquema Nacional de Seguridad).