Information Security Policy

  • Home /
  • Information Security Policy

Information Security Policy

Updated: September 10, 2025
Document version: 1.0
Effective from: 2025-09-10

Company: Nordics Software, UAB
Address: Mėtų g. 112F, Bajorų k., LT-14182 Vilniaus r., Lithuania
Document type: Public
Contact: +370 665 00016

📄 Download PDF version

1. Purpose and Scope

This Information Security Policy defines Nordics Software, UAB’s direction and principles for information security management to ensure the confidentiality, integrity, and availability of all managed information.

The policy applies to all employees, contractors, partners, and third parties with access to the company’s information, information systems, or infrastructure.

2. Information Security Principles

  1. Legal compliance: All applicable laws, contracts, and standards are followed.
  2. Risk management: Information security risks are systematically assessed and managed.
  3. Protection of information assets: All assets are identified, classified, and protected according to their value and importance.
  4. Least privilege access: Access is granted only as necessary for job responsibilities.
  5. Incident management: All security incidents are identified, recorded, analyzed, and resolved to prevent recurrence.
  6. Third-party control: Security requirements are applied to suppliers and partners to ensure consistent protection throughout the supply chain.
  7. Employee responsibility: All employees must handle information securely and participate in mandatory training.
  8. Continuous improvement: The information security management system is regularly reviewed and improved.

3. Management Commitments

The company’s management:

  • Approves and publishes this policy.
  • Ensures integration of information security into all business processes.
  • Appoints responsible personnel for information security management.
  • Provides sufficient financial, technical, and human resources for implementation.
  • Promotes employee awareness and accountability.
  • Regularly evaluates and updates the policy.

4. Policy Review

This policy is reviewed at least annually or whenever there are changes in:

  • legal or regulatory requirements;
  • organizational structure or processes;
  • information security risks or technological environment.

5. Contact Us

For questions regarding this Information Security Policy:
📧 info@nordicssoftware.lt
🌐 +370 665 00016

© 2025 Nordics Software, UAB — All rights reserved.