For Levin & Riegner, LLC and its subsidiaries ("Fountain," "Liquid Crystal", “L+R”) and the people and companies that depend on its services, information is one of its most valuable assets. It is a mission-critical factor without which the company could not carry out its business activity. L+R relies heavily on the quality of managing the use of this information accurately, completely and of obtaining it in a timely manner.
The company thus recognizes the importance of security measures in ensuring that the information is not affected by threats such as errors, fraud, embezzlement, sabotage, extortion, industrial espionage, privacy violations, outages and natural disasters. The Partners at L+R recognises its responsibility for developing security guidelines that allow it to minimize the potential risks to which it is exposed, thus helping the Company to achieve its strategic business objectives.
The purpose of this Information Systems Security Policy is to define the main guidelines leading to the formulation of Information Systems Security procedures. These procedures are aimed at safeguarding information, as mentioned in the previous paragraph.
THE INFORMATION SYSTEMS SECURITY POLICY IS BASED ON THE FOLLOWING KEY PILLARS THAT SUPPORT DATA PROTECTION IN L+R:
THE PRINCIPLES AROUND WHICH INFORMATION SYSTEM SECURITY MEASURES ARE BUILT ARE:
The Corporate Information Systems Security Policy will apply to all L+R workers, whether or not they are employees. This includes anyone from outside L+R with access to information belonging to or managed by the company. The policy also applies to all digital information and information systems owned or managed by L+R.
The Corporate Information Systems Security Policy contemplates classifying the levels of information sensitivity in order to guarantee commitments to controlling the optimum confidentiality, integrity and availability of the information.
THIS POLICY ADVOCATES CLASSIFYING THE INFORMATION BASED ON THE FOLLOWING SECURITY LEVELS:
THE REQUIREMENTS OF THIS CORPORATE SECURITY POLICY ARE AS FOLLOWS:
L+R will enable all the means necessary to disseminate the procedures designed to promote the culture of control to all employees and outsourced personnel.
In this regard, L+R considers maintaining a high level of security awareness as a strategic objective. Consequently, L+R considers all the rules created for that purpose as binding for all personnel and subcontractors. Strict compliance with these rules must be observed at all times.
SOFTWARE AND SYSTEM AGREEMENTS
For a comprehensive list of software utlized by the L+R team and the assocatated agreements click here.