• The responsibility for all information security efforts has been appointed to the Security officer
• Policies and procedures documents will be kept up to date and made available to all relevant stakeholders, this is monitored in the Monitoring plan
• Information security awareness training will be provided to all employees and will be repeated yearly (see Google calendar)
• Organizational and technical measures will be put into place to protect information assets, this is reviewed during Risk assessment
• Procedures will be put into place to correct and prevent any deviations and incidents as described in the Change management process and the Incident management process
• To comply with all laws and regulations in our jurisdiction OHMX.bio counts on experienced companies as described in our Legal and contractual requirements
• To continuously improve, OHMX.bio reviews and defines new Objectives
• To provide assurance to its stakeholders, OHMX.bio is compliant to ISO 27001

Version approved on 21/04/2022