Pintu Information Security Management System Policy and Cloud Service
Last Updated : 20/08/2021
Protecting the confidentiality, integrity, and availability of PINTU’s information resources from all forms of interference and threats, both internal and external, whether intentionally or not;
Optimizing the risk management of ICT, by preventing and reducing the impact of security incidents so as to maintain and enhance the reputation of PINTU;
Encouraging the management and all of PINTU’s human resources to have an adequate level of awareness, knowledge and skills, and be responsible for accessing information belonging to PINTU in order to fulfill their obligations in maintaining the security of information assets;
Ensuring legal compliance, compliance with laws and external regulations;
Ensuring PINTU’s capability to continue its activities in the event of a significant information security incident or threat to PINTU’s information system;
Having adequate resources to implement an effective information security program;
Ensuring consistency in implementing information security;
Ensuring business continuity processes run well;
Complying with applicable laws and regulations and meeting the requirements of the Information Security Management System based on the ISO/IEC 27001:2013 and ISO/IEC 27017:2015 standards.