Information security policy requirements

The group information security policy consists of a set of documents with requirements for different areas of handling information and set of minimum criteria for information security in the Azets Group.

The requirements are based on Azets overall policy and internal requirements established over time, laws and regulations (like GDPR), industry standards (like CIS, NIST CyberSecurity Framework, and ISO standards) as well as customer requirements.

All companies that are part of the Azets Group must adhere to the requirements and report back to the group according to our reporting requirements.

Security policy overview