Information Security Policy
Navagis is committed towards securing the Confidentiality, Integrity and Availability of information. The security of information and information assets is regarded as fundamental for the successful business operation of Navagis for its navigation management solutions and services. Navagis has adopted an Information Security Management System (ISMS) comprising of the information security policies, procedures, and a comprehensive risk management framework to effectively protect data/information of Navagis and its customers from information security threats, whether internal or external, deliberate or accidental. ISMS in Navagis is aligned to the requirements of ISO/IEC 27001: 2013.
The management of Navagis is committed to ensure that:
- The confidentiality of information is protected and unwarranted disclosure of valuable or sensitive information is prevented.
- The integrity of information is preserved to ensure its accuracy and completeness.
- The availability of information is maintained to meet business needs and client’s requirements.
- Business continuity plans are developed, maintained, and tested.
- Competence of the employees towards information security management system is enhanced through regular training and skill augmentation initiatives.
- Incident management process is established and implemented to ensure that all breaches of information security, actual or suspected are reported and investigated.
- Risks are mitigated to an acceptable level through a risk management framework.
- Appropriate resources are allocated to implement, operate, and review an effective Information Security Management System.
- All applicable legal, regulatory and contractual requirements related to information security are met and regularly reviewed.
- All stakeholders are responsible for implementation of respective information security policies and procedures within their area of operation, and oversee adherence by their team members.
The management of Navagis acknowledges the need of continual improvement of the information security management system and practices the same through various strategic and operational initiatives.
Navagis shall ensure that the Information Security Policy and related documented information is reviewed at least on an annual basis to ensure suitability, adequacy, and effectiveness of the ISMS framework.