In an era defined by the relentless drive of digital transformation, protecting the confidentiality, integrity, and availability of information is a fundamental goal for ACS to maintain its competitiveness in an extremely innovative environment.
ACS has, therefore, implemented and established an Information Security Management System (ISMS) to safeguard and protect data and information from potential threats through a continuous process of monitoring and risk assessment.
At its core lies the policy called "Information Security Policy," which outlines the objectives ACS aims to pursue for information security, as listed below:
- Ensure and protect information related to ACS's business, including all customer and internal staff information, safeguarding confidentiality, integrity, and availability;
- Establish and implement security measures to protect information within ACS's scope of application from abuse, fraud, misuse, and theft;
- Ensure the authority and responsibilities for information security;
- Support management and all staff in achieving a level of knowledge, awareness, and skills to minimize risks of potential damage arising from adverse information security events;
- Ensure that ACS can continue its business activities even in adverse situations;
- Guarantee compliance with the ISO/IEC 27001:2022 standard and its continuous improvement;
- Ensure adherence to all applicable mandatory and legal regulations.
The commitment ACS is dedicating to ensuring the security of managed information aligns with the highest international standards, demonstrated by its intention to certify its ISMS in accordance with the TISAX (Trusted Information Security Assessment Exchange) standard recognized in the automotive sector and subsequently to the ISO/IEC 27001 standard.
