Security Policy

1. introduction

TRIBBU's Security Policy reflects security concepts, principles, responsibilities and objectives, the results of which guarantee the company the necessary freedom of action.

The objective of TRIBBU's Comprehensive Security is to protect all people - both users, professionals and workers - the confidentiality of their communications and the integrity of their information. It also oversees the other assets that make up the company's assets, such as installations or content of all kinds.

Comprehensive Security includes the traditional concepts of physical security and logical (technological) security in order to maintain business continuity in the face of any adverse circumstance.

An increase in the “safety culture” in staff will provide clear benefits by increasing the security of systems and procedures, and will minimize the risk of potential malicious actions. It is essential that all information related to security issues flows through the appropriate channels at a cross-cutting and vertical level in the organizational unit.

2. Principles

- Integration. Global Security is an integrated process aligned with the activity, in which the entire company participates.

‍- Profitability. Security is guided by business criteria, taking into account the relationship between expense and investment. Their criteria are set in a centralized manner, taking advantage of any existing synergy. This management allows for better performance of the effort applied to security.

‍- Continuity. Security must be present throughout your work cycle: protection, prevention, detection, response and recovery.

‍- Adequacy. The means used must be adapted to the environment of the activity. Among other factors, competition with other companies, social, political and economic disorders, amateur or professional “hacking” stand out for their impact on the organization's activity and security levels.

3. Responsibilities

The ultimate responsibility for security lies with the management team, which is directly responsible for managing its development and implementation.

The management team will analyze security risks and vulnerabilities that may affect the proper functioning of the activity and will propose appropriate rules, means and measures to minimize them.

All personnel in the organization must assume responsibility for maintaining the security of the assets in their charge, observing the security regulations that are implemented by the management team.

4. Objectives

- Achieve and maintain the level of security required for adequately ensure the continuity of the activity, even in adverse situations.

- Increase integration and mutual support for the physical and logical aspects of security.

- Collaborate in the management of other security disciplines, including labor and environmental aspects, meeting the criteria that promote Corporate Social Responsibility.

- Establish the corporate security structure defined by the decision-making bodies of the organization and creating the appropriate communication channels between all those involved.

- Comply with regulations official in matters of security and other requisitions.- Establish and implement Plans of Training and Dissemination of Security to improve staff training.

- Express commitment to continuous improvement.

- Integrate the different departments of the company into a security management system that, under common criteria, exploits synergies and achieves consistency in resources and actions.

- All TRIBBU staff will know and apply the regulations that develop this Security Policy.