Information Security Policy

D.G. Techlink Ltd has established and maintains an Information Security Management System (ISMS) through which it ensures the confidentiality, integrity, and availability of the information and data processed, as well as the systems and applications utilised for this purpose.

The ISMS enforces policies and procedures to protect the company's resources from unauthorised access, modification, and/or deletion, ensure a digitally trusted environment for the company's procedures, and assure that the company's products have a certain level of quality and security built into them.

Security Practices

D.G. Techlink Ltd performs the following on a frequent basis:

• Risk assessments to identify and mitigate potential threats
• Access control reviews to ensure least-privilege principles
• Vulnerability scans across systems and applications
• Software application and network penetration tests (internal and external)
• Information and data backup verification and recovery drills
• Incident response procedure testing and refinement
• Disaster recovery and business continuity plan testing and updates

Security Awareness

All personnel participate in the company's information security awareness training programme on a regular basis, learning to handle information securely and in accordance with the company's acceptable use policy and information classification scheme as approved by management.

Certification

D.G. Techlink Ltd has obtained and maintains an ISO/IEC 27001 certification, which provides a standard level of assurance of the aforementioned information security controls implementation.