Integrated management system policy

FLEXOH provides services whose purpose is to increase the satisfaction and motivation of the staff of all types of companies, while facilitating the work of Human Resources. The dedication and effort of its trained and committed team achieves every day its main objective: customer satisfaction.

The scope of the activity for ISO 9001 and ISO 14001 is:

“Flexible compensation service”

The scope (SoA) of the activity for ISO 27001 is:

“The information security system supporting the compensation and benefits activity through the self-developed SaaS platform according to SoA v.2 - 2022.”

FLEXOH's Management provides the necessary resources to establish and operate an ISMS that establishes guidelines to ensure the confidentiality, integrity and availability of information located in information systems and software that process, store and transmit information related to the company's activity, as well as to information systems, networks, operating systems, software, tangible and intangible assets and cloud services, considering the needs of our stakeholders.

The Management, convinced that to ensure the success of its company it is essential to establish and develop an Integrated Management System, acquires the commitment to establish and develop said System based on the ISO 9001, ISO 14001 and ISO 27001 Standards. the policy of the integrated management system are as follows:

• To ensure the satisfaction of our clients and interested parties, committing ourselves to understand the current and future needs of the client, satisfy their requirements and strive to exceed the expectations of both clients and interested parties.
• Comply with all the requirements of our clients, as well as all those of a legal nature and other requirements both in the field of quality, as well as those related to the environmental aspects of the organization and those related to information security, specifically the relating to personal data.
• Commit ourselves to continuously improve the integrated management system, including both the quality of our services, as well as our attitude towards the environmental impacts generated by the activity, improving our environmental performance. Our commitment is also aligned with the creation of good practices for the management of information security that include both our workers and users.
• Commit ourselves to protecting the environment, including the prevention of pollution, as well as the responsible use of resources in order to reduce our environmental impact and maintain a mutually beneficial relationship with the environment that surrounds us.
• Enter into contractual agreements with its personnel, collaborators, suppliers and service providers that include clauses on confidentiality, second party audits, intellectual property and information security rights and obligations.
• Protect information by developing action plans that take into consideration the implementation, operation and maintenance of physical and technical security controls related to the company's facilities, processes and technologies.
• Provide all the necessary resources to the staff to achieve the objectives of the organization and the continuous improvement of the management system.

In order to ensure the success of the principles that govern our policy, the Management requests the participation of everyone, at all levels, both in their individual actions and when they are part of working groups, in order to establish and maintain an integrated management system that ensures the satisfaction of our customers, staff and other interested parties and is committed to review and improve controls and processes by reviewing their established risks and action plans.

Signed by Management

Alicante, September 22, 2022