Information Security Policy

Last Updated November 2023.

Version 1.2 

OUR COMMITMENT TO INFORMATION SECURITY 

OrangeTech is dedicated to maintaining the highest standards of information security to protect the confidentiality, integrity, and availability of our data and that of our clients, partners, and stakeholders. To achieve this, we adhere to the guidelines set forth in ISO/IEC 27001:2013, the international standard for information security management.

Our Information Security Management System (ISMS) enables us to:

1. Identify and mitigate security risks across all operations, ensuring proactive measures are in place to prevent unauthorized access, data breaches, and data loss.
2. Implement and monitor security controls in line with best practices and regulatory requirements, fostering a secure environment for sensitive and critical data.
3. Educate and train our staff on security protocols to enhance awareness and responsibility at every level within our organization.
4. Continually improve our security posture by regularly reviewing, auditing, and updating our ISMS to adapt to evolving security threats and regulatory changes.

This policy is supported by our senior leadership and reviewed on a regular basis to ensure it remains effective and up-to-date. We are committed to achieving and maintaining compliance with ISO/IEC 27001 and related standards, demonstrating our dedication to information security and the trust of our stakeholders.

CHANGES TO THIS POLICY 

We may update this Information Security Policy from time to time. The updated policy will be effective as of the date of posting on our website. We encourage you to review this policy periodically to stay informed. 

CONTACT US 

For more information about our information security practices, please contact us at [email protected] .