WALLBID recognizes the strategic importance of protecting its informational assets and is committed to ensuring the confidentiality, integrity, and availability of all physical and digital information. WALLBID takes into account the needs and expectations of its stakeholders (employees, customers, suppliers, partners, etc.) and incorporates these requirements into its information security strategy. Consequently, the company is committed to protecting all informational assets —whether physical or digital— by ensuring their confidentiality, integrity, and availability.

WALLBID considers the needs and expectations of its stakeholders (employees, customers, suppliers, partners, etc.) and integrates these requirements into its information security strategy. All employees and involved parties must comply with the procedures and guidelines outlined in this policy, reinforcing the company's overall security culture.

Policy Objectives:

• The company allocates sufficient financial, human, and technological resources for the implementation and continuous improvement of the Information Security Management System (ISMS).
• Ensuring Core Principles: We strive to uphold the confidentiality, integrity, and availability of data related to the company, customers, partners, and suppliers.
• We implement procedures and technical measures to protect our informational assets against unauthorized access, destruction, or alteration.
• Business Continuity and Risk Reduction: We implement measures to ensure the smooth operation of the organization and effectively address security incidents.
• Defining Responsibilities: We establish clear responsibilities and accountability for information security at all company levels.
• Regulatory Compliance: We ensure adherence to all applicable legislative, regulatory, and contractual obligations.
• We define and periodically review security objectives to align with the evolving business environment and emerging threats.

Scope of Application: This policy covers all informational assets of the company, including data (such as personally identifiable information/PII), tangible and intangible assets, software, and any other form of information. Additionally, we assess the potential impacts of climate change (e.g., extreme weather events and infrastructure disruptions) on information security.

Risk Planning and Management: We apply a comprehensive process for identifying, assessing, and addressing risks related to our information. This approach considers both digital and physical factors, including the effects of environmental and climate changes.

Support, Training, and Communication: This policy will be reviewed at least annually or whenever deemed necessary to reflect developments in the business environment. We provide regular training and updates to employees regarding the policy’s requirements and best security practices.

Monitoring, Measurement, and Performance Evaluation: We conduct regular internal audits, measurements, and evaluations of the ISMS’s performance to ensure the effectiveness of security measures. The results of these evaluations are used to implement corrective actions and upgrade security processes, ensuring we respond to current and future threats.

Continuous Improvement and Corrective Actions: We are committed to continuously improving the Information Security Management System by identifying, recording, and correcting any deviations or complaints. In case of detected non-compliance or weaknesses, immediate procedures are activated to correct them and prevent future issues.

WALLBID ensures full compliance with all applicable legislative, regulatory, and contractual obligations, integrating them into its information management procedures and practices. This policy will be reviewed at least annually or whenever necessary to meet changing business needs and developments in the field of information security.