Information security policy

Huggg Ltd, are committed to ensure that:

1. The Information Security Management System (ISMS) ensures the confidentiality, integrity and availability of all Information at Huggg Ltd. It is realised through the policies, procedures and controls within the ISMS.

2. A study of our organisation is undertaken as part of our ISO 27001:2013 Management System implementation has enabled Information Security requirements to be embedded in our everyday business processes.

3. The ISMS purpose and direction and SMART information security objectives are agreed based on the results of risk assessment activity and our overall business strategy.

Our ultimate objective is to:

Eliminate Business Risk, or Reduce as far as Practicable

4. A risk assessment framework that includes a defined methodology and tolerable level of risk is documented within the ISMS Management System and the organisation will apply relevant controls with a business risk approach.

5. To ensure that all relevant staff, customers and third parties are aware of the ISMS, and their particular responsibilities and authorities where applicable within it, this policy is displayed and communicated publicly, and is supported by awareness and training activity.

6. We are committed to the continued review and improvement of the ISMS in order to reduce the risk of security incidents and ensure continued compliance with contractual, legal and other requirements applicable to the organisation.

7. Top management gives complete approval and commitment to this policy.

Paul Wickers CEO
Huggg Ltd.