The Management of PEXEGO, defines through this Politics of Security his commitment of implantation and maintenance of the Management System Information Security, based in the requirements of the norm ISO/IEC 27001:2005. The organization establishes a SGSI that gives support to the activities of pedagogical Adaptation and creation of digital contents for elearning, Development multimedia products, Development virtual simulators with formative ends, Development R+D by means of TIC, and Design, development, implantation and maintenance of software, with special interest in satisfying the requirements, needs and expectations of the clients, ever vigilant the continuous improvement of the security of the information basing in the following principles:

1.Protection of data of personal character and the privacy of the people.

2.Protection of the registers of the Organization.

3.Compliance with the legislative and contractual requirements applicable to the activity of the company in subject of security.

4.Training in all those subjects for the activities of the company and for the security of the information.

5.Compliance of the controls and measures of security established in the instructions of security, being able to be applicable the disciplinary process defined in the Statute of the Workers in his Chapter IV, Faults and punishments of the workers, in case of violaciones intentional of the security.

6.Communication of the incidences of security detected in base to the instructions established.

To attain the compliance of the previous principles, is necessary to implement a group of measures of security, so much technical and organizational that guarantee the effectiveness of the efforts realized. All the measures adopted establish through the Manual of security, the procedures and the instructions of work defined.

All the members of the organization will have to fulfil the compliance of the established in the SGSI of PEXEGO. To guarantee the compliance of the established by the SGSI, the management delegates the responsibility of supervisión, verificación and monitorización of the system in the Security Manager, which possesses the authority and necessary independence and will have the timely resources, to guarantee the correct operation of all the defined in the SGSI. Finally, the management engage to facilitate the necessary means and to adopt the timely improvements in all the Organization, with the aim of prevention of the risks and damages on the active, improving like this the efficiency of the SGSI.

Lugo, 16 February 2010