ISMS Policy Statement

Reso, whose business activities are related to on-demand and project-based research services including business research, market research, media monitoring, and investment research is committed to ensure security of its information assets and to protect them from all threats through maintaining their confidentiality, integrity, and availability, while abiding to business, legal, regulatory, statutory, and contractual requirements.

In accordance with the requirements of ISO 27001, Reso has established and implemented an Information Security Management System (ISMS), and established procedures to maintain and continually improve the system. Reso has also established supporting policies and procedures for all applicable clauses and controls as per the Statement of Applicability (SOA) to express detailed response to the standard’s requirements.

Reso’s top management are committed to:

Protect the confidentiality, integrity, privacy of information and intellectual property of Reso and its clients
That information is made available to authorized people on need-to-know basis in a manner that does not compromise confidentiality, privacy, and integrity of information assets
Ensuring that there is general security awareness throughout Reso and providing suitable training to our staff, so that they are provided with current security knowledge, facts, and methodologies to ensure compliance to Reso security policies within their functional areas
Providing business continuity and availability through strong planning, contingency measures, and testing
Minimizing loss and business disruption in the event of a security incident
Providing Reso with competitive differentiation, and global recognition by being ISO 27001 certified

Reso shall ensure that the review of the Information Security Policy and related documents is performed at least annually or when significant changes occur to ensure continual improvement of the ISMS.