INFORMATION SECURITY POLICY

Revision no. 00 issued on 03/03/2023

TO ALL EMPLOYEES

COLLABORATORS

STAKEHOLDERS



Targa Telematics S.p.a. Is a major international company active in the field of applied information technology. With its core business being the development of solutions enabling connection and communication with, from and between objects (IoT) and value-added services that save time, energy and money.

The information assets processed by Targa Telematics represent the main resource useful for delivering the services dedicated to its customers and as such, they must be adequately protected with a constant balance between the level of risk and the degree of protection required, correctly combining the need to protect the value of information with the need to ensure the efficiency, effectiveness and continuity of business processes.

To do this, Targa Telematics decided to implement the information security management system as required by the UNI CEI ISO/IEC 27001:2017 standard in order to ensure:

1.Confidentiality – information accessible only to duly authorized parties and/or processes;

2.Integrity – safeguarding the consistency of information from unauthorized modification;

3.Availability – ease and certainty of access to necessary information;

4.Privacy – guarantee of protection and control of personal data.

To this end, the guidelines regarding information security chosen are:

    • Have all employees achieve full awareness of the information they manage and of the assessment of its critical nature and the resulting conduct to be adopted since assessed as appropriate in the risk assessment;
 
    • Prevent unauthorized processing of information;
 
    • Collaborate with third parties involved in information processing according to procedures that can ensure adequate levels of security;
 
    • Manage anomalies and incidents that could affect the information system and corporate security levels in a timely and proper manner through efficient prevention, communication and response systems in order to minimize the impact on the business;
 
    • Always operate in accordance with legal requirements and compliance with the security undertakings provided for in contracts with third parties;
 
    • Ensure business continuity and disaster recovery by implementing established security procedures;
 
    • Protect customer information adequately and consistently as an added value of our service and reassure them regarding the proper management of their information by Targa Telematics.procedures;
 

Moreover, the management undertakes to:

    • Ensure the necessary resources for the effective protection of information;
 
    • Implement and uphold this Policy, and disseminate it to all stakeholders;
 
    • Define information security objectives;
 
    • Manage anomalies and incidents that could affect the information system and corporate security levels in a timely and proper manner through efficient prevention, communication and response systems in order to minimize the impact on the business;
 
    • Periodically review the Information Security Objectives and Policy to ascertain their continued fitness for purpose.

The Chief Executive Officer