Security of Information Policy

Veridas is aware of the importance of providing the highest operational and legal level of security to all stakeholders, and to this end have established an Information Security Management System based on ISO/IEC 27001. In this regard, the companies have developed and implemented a comprehensive information security policy to ensure the following objectives:

· Guarantee the confidentiality, availability, integrity, authenticity and traceability of its services, both in the services provided to its clients and in the internal management.

· Comply with legal, regulatory and client requirements regarding the processing of the information.

· Convey confidence to stakeholders.

· Establish employee responsibility for compliance with information security procedures.

· Focus on continuous improvement.

The companies have approved and maintained policies and procedures in order to meet the objectives mentioned above, as a reflection of its commitment to information security within the framework of its activities. The companies are committed to annually reviewing and updating its Information Security Policy, and communicating it to stakeholders.

This Policy is available to the interested parties of the System that request it, being the same approved by the Management.