1. Information is one of FacilitaPay's main assets. Therefore, our Cybersecurity strategy is based on detection, prevention, monitoring, and response to incidents, as well as strengthening Cybersecurity risk management, to build a robust foundation for an increasingly digital future. To achieve this goal, we use an expanded perimeter protection strategy. This concept considers that information must be protected regardless of where it is, whether internally, in an affiliate, with Partners and Service Providers that provide Services, or in an international unit, throughout its entire lifecycle, from collection to disposal. Our commitment to the proper handling of information from FacilitaPay, Clients, and the general public is based on the principles of Confidentiality, Availability, and Integrity. To adequately protect the processed data, FacilitaPay adopts the following internal processes:
- Information Asset Management
- Classification of Information Asset Relevance
- Information Asset Access Management
- Cybersecurity Risk Management
- Service Provider and Partner Risk Management
- Incident Handling
- Cybersecurity Awareness
- Governance with Business and Technology Areas
- Physical Environment Security
- Application Systems Development Security
- Log Recording
- Cybersecurity Program