ISMS Policy Statement

Integrated Management System Policy


ISMS Policy Statement - v2.0 - 21 March, 2023

Aleanova Software S.L., Softquo Holding Ltd., Softquo Schweiz and Virtual Gaming Technologies as an organisation oriented to the development of gambling software, pursues at all times to provide products and services of high value to its customers in order to obtain their full satisfaction, as well as to continuously improve through the efforts and contributions of all the staff of the organisation, as well as to maintain the standards of information security, training and awareness of employees in this area.

Likewise, the organisation is fully committed to the measures necessary to implement an effective information security management system, such as the establishment of cryptographic controls, physical and logical access policies, effective incident management, management and administration of information assets, among others measures required by the ISO 27001 and ISO 27002 standards.

As a consequence of the above, the management, together with the organisation's leaders, establishes a series of annual objectives and goals for information security, both for business continuity and to ensure that it meets the aforementioned security requirements.

Thus, the scope of the integrated policy of the management system encompasses the processes of software development and programming (front-end and back-end), artistic creation, quality control, support, administration and management of information systems, as well as their maintenance and commercialisation.

In order to promote a continuous increase in the value of products and services, to comply with all their requirements, including applicable legal requirements and others that the organisation subscribes to at any time related to its environmental aspects, as well as to be able to measure customer satisfaction, the organisation has decided to implement, maintain and continuously improve its Information Security Management System according to the UNE-EN ISO 27001 standards.

The organisation will defend and promote precepts such as the prevention of pollution, respect for the environment, staff training, customer orientation, employee responsibility in raising the quality of their work and the service they can provide, the participation of all staff in changes, the tendency to eliminate non-conformities and continuous improvement.

The Policy provides the reference framework for establishing and reviewing the Objectives and Targets for Quality, Environment and Information Security, which are set out in our Objectives and Targets, and will be assumed, applied and kept up to date at all levels of the organisation, with the full commitment and support of the Management.