Information technology Security techniques Information security management systems
Sicilsat Communications ISO/IEC 27001:2022
Industrial Associations
Quality Management System
The scope of Sicilsat Communications Quality management system addresses principles, methods and results related to continuous improvement. The system has been certified based on ISO 9001:2015 standard since February 2017.
Quality policy
The foundation of the Quality Policy enacted by the Company is:
“maximum customer satisfaction in compliance with its explicit and implicit expectations and needs, by means of the high quality of the products and services offered“.
This principle is pursued through:
- communicate the importance of the Quality Management System and compliance with the requirements of the quality management system, actively involving all interested parties and, at the same time, coordinating and supporting them;
- ensure the integration of the requirements of the Quality Management System into the organization’s business processes;
- determine, understand and meet the Customer’s requirements and applicable binding requirements;
- promote the use of a process based approach;
- plan its processes with a risk-based thinking approach in order to implement the most suitable actions to manage the risks associated with the processes and exploit the identified opportunities;
- ensure that the quality management system fulfil the expected results;
- actively involve, guide and support people to contribute to the effectiveness of the quality management system;
- promote the improvement.
Information technology - Security techniques - Information security management systems
Sicilsat Communications is comply with ISO 27001 Information technology – Security techniques – Information security management systems
Quality policy
The foundation of the Quality Policy enacted by the Company is:
“preserve the confidentiality, integrity and availability of all information (in electronic and non-electronic format) throughout the organisation under the SGSI, in order to maintain its economic soundness, profitability, legal and contractual compliance”.
This principle is pursued through:
- confidentiality: information must be known only by those who have the right, respecting the principle of minimum privilege (“need to know”) based on the tasks covered (“need to operate”);
- integrity: the information must be accurate and complete, must comply with company values and expectations, and must be protected from unauthorised changes and cancellations. To meet this requirement, the information shall be accurate, up-to-date and legible;
- availability: information must be available when required by business processes, in an effective and efficient manner;
- effectiveness: information must be relevant and relevant to the business process and, at the same time, must be available promptly, without errors and provided so that it can be used by the user;
- efficiency: information must be provided through the optimal use of resources both from the point of view of productivity and economy;
- Personal data must be processed:
- in compliance with confidentiality standard;
- lawfully and fairly; • for a period of time not exceeding that necessary for the purposes for which they were collected or subsequently processed; • in full compliance with the minimum security measures; guarding and controlling the data being processed in such a way as to avoid the risks, even accidental, of destruction or loss, of unauthorized access or processing not permitted or not in accordance with the purposes of collection