About Us
We are a Peruvian company founded in 1988. We provide BPO services and solutions for digital payments and security in the banking, telecommunications, commerce, and government sectors. Our well established foundations, our high-quality technological solutions and services, and our commitment to our clients, has allowed us to grow in national and international markets, primarily in the Andean region.
Our team’s expertise, along with constant research and development, has allowed us to provide innovative solutions for digital payments. We provide solutions with a high level of security, authentication, and integration, that are designed to handle large volumes of information with excellent reliability. Additionally, we also provide competitive BPO services that comply with quality standards required by the industry. We are proud to manage our company with the highest quality standards available in the market. We are ISO 9001 certified (international quality certification), in its 2015 version. These apply to the production, administrative and commercialization processes of our software products and services. Additionally, we are ISO 27001:2013 certified, corresponding to Information Security, and ISO 22301:2019 certified, regarding Business Continuity. Thus, we have a management system ensuring quality, security, continuity, and continuous improvement to meet the most demanding international standards.
INFORMATION SECURITY GENERAL POLICY
GENERAL OBJECTIVES
- Develop products and services in accordance with the regulations and standards of the Information Security Management System (ISMS) related to the legal area, contractual and our lineaments.
- Ensure that this policy is compatible and aligned to the vision and mission of Novatronic.
- Ensure that the controls implemented are consistent with the structure of the information technology and information security risks (IS) of Novatronic.
SPECIFIC OBJECTIVES
In order to implement the Information Security Management System (ISMS), the following commitments must be considered:
- Implement the ISMS model taking into account the risk assessments, as well as the legal, technical and economic considerations of Novatronic.
- Implement Policies, Specific Policies, Procedures, Characterizations and/or Instruction of IS oriented to the good practices for the safe handling of information at the level of processes, people and technology.
- Ensure that the inventory of assets is updated periodically and implement security controls considering the risks in cyberspace.
- Assure compliance of the permanent training and awareness programs on IS matters and demands of our clients.
- Guarantee the correct compliance of periodic audits of the security controls and the good practices related to the IS that impact the business.
BUSINESS CONTINUITY POLICY
The Business Continuity Management System (BCMS) based on the ISO 22301 standard allows us to ensure the following commitments in the event of a disruptive incident:
• Establish a structured framework to ensure the achievement of business continuity objectives and define the appropriate strategy to efficiently manage the company’s recovery from disruptive events, minimizing downtime.
• Promote the company’s recovery in the face of a disruptive event and engage the entire organization in meeting its objectives through the leadership of Senior Management.
• Ensure compliance with the requirements set by the ISO/IEC 22301:2019 standard, as well as contractual commitments, legal and regulatory requirements, and meet the needs and expectations of stakeholders.
• Foster continuous improvement of the Business Continuity Management System through collaboration with all stakeholders.