The security of information and information assets is regarded as fundamental for the successful business operation of CRIF Philippines.
Fully committed towards ensuring the Confidentiality, Integrity, and Availability of information, CRIF Philippines has adopted an Information Security Management System (ISMS) comprising of the information security policies, procedures, and a comprehensive risk management framework to effectively protect data/information of CRIF Philippines and its stakeholders including from security threats, whether internal or external, deliberate, or accidental.
The management of CRIF Philippines is committed to ensure that:
- Appropriate resources are allocated to implement, operate, and review an effective Information Security Management System.
- Awareness of the employees towards information security risks is enhanced through regular training and appropriate initiatives.
- Applicable legal, regulatory, and contractual requirements related to information security are met and regularly reviewed.
- The organization continually improves the suitability, adequacy and effectiveness of the information security management system and practices the same through various strategic and operational initiatives.