This policy statement outlines Maritech Holding Limited’s and its subsidiaries’ commitment towards Information Security Management (“the Group”).
Our objective is to protect the Group from incidents that could have an adverse effect on the Group’s ability to (i) protect the confidentiality of its information (ii) maintain the integrity of its data and (iii) ensure the availability of its data and services:
Confidentiality: Ensuring that information is not made available or disclosed to unauthorised individuals, entities or processes.
Integrity: Safeguarding the accuracy and completeness of data.
Availability: Ensuring that information and services are accessible and useable, upon demand, by an authorised entity.
Our information security management system is based upon the requirements of the international standard ISO 27001. Using this framework and the deployment of applicable security controls and technologies, we will assess, manage, continuously review and improve information security related risks. We shall also ensure compliance with any applicable legal and regulatory information security requirements.
It is the responsibility of all employees and relevant contractors to ensure they are familiar with our information security requirements and the applicable policies and procedures that underpin them. All employees and relevant contractors will be provided with regular information security and awareness training to educate them on current security threats and best practice mitigation techniques.