The information security policy of SP Nikolaev Nikita Alexeevich includes the following provisions:

    1. SP Nikolaev Nikita Alexeevich (hereinafter – FSCORLAB) is an enterprise operating in the field of data processing, building software and analytical complexes for public and private corporations. The implementation of these activities is associated with the processing and management of information that is important assets of clients FscoreLab, and depends on ensuring information security, which is understood as ensuring the confidentiality, integrity and availability of information.
    2. The Information Security Policy of FSCORLAB sets goals, objectives and approaches in the field of information security, which FSCORLAB is guided by in its activities.
    3. The policy is aimed at achieving the following goals: ensuring the continuity of the main business processes of FSCORLAB; minimizing possible losses, material damage, reputational risks from violations in the field of information security.
    1. In order to achieve these goals, the Information security Management System (hereinafter referred to as the ISMS) has been implemented in FSCORLAB, which complies with: the requirements of the legislation of the Russian Federation, regulatory and contractual obligations of FSCORLAB from the point of view of information security; the current Risk Management Policy.
    2. FSCORLAB is documented in this Policy, in rules, procedures, and work instructions, which are mandatory for all employees of FSCORLAB in the scope of the system. The documented requirements of the ISMS are brought to the attention of the company's employees.
    3. All information assets of FSCORLAB, including hardware, software, information resources, physical media in the form of hard and SSD disks, flash cards, personnel, are subject to accounting and categorization in accordance with their importance and degree of access.
    4. In accordance with established procedures in the field of risk management, regular assessment of information security risks is carried out. When conducting it, the probability of threats to information security and the degree of their impact on business processes, financial condition and business reputation of FSCORLAB are taken into account.
    5. Based on the results of the information security risk assessment, management tools are selected and applied to protect information, including organizational, physical, technical, software and hardware-software means of ensuring ISMS.
    6. To ensure the physical protection of information under the control of FscoreLab, security zones are established within the boundaries of the scope of the ISMS (office located at the address: St. Petersburg, 7A Katernikov Street) and measures are taken to prevent unauthorized access to workstations, data carriers of customers of FscoreLab.
    7. FSCORLAB strives to identify, take into account and respond to incidents in the field of information security in accordance with established procedures.
    8. Since the specifics of the work of FSCORLAB are related to confidential information of Customers, the company conducts procedures for depersonalization and / or special modification of data in order to minimize risks.
    9. Employees of FSCORLAB get access to the information that is required for the performance of their functional duties. Only beneficial owners have access to uneducated/unrecognized information in FSCORLAB. FSCORLAB provides information, training and advanced training of employees in the field of information security and data encryption in accredited training centers that have coordinated programs with the FSB, FSTEC, UMO and Security of the Russian Federation. FSCORLAB has at least 2 employees on a permanent basis who have undergone professional retraining «Information Security».
    1. The management of FSCORLAB carries out general information security management and provides the necessary conditions for: implementation of information security risk assessment and information protection measures; maintenance, monitoring, analysis and continuous improvement of the information security management system; regular training of employees in the field of information security.
    2. Employees of FSCORLAB are personally responsible for compliance with the requirements of the ISMS documents and are obliged to report all detected violations in the field of information security to management in the person of the technical director of FSCORLAB.
    3. The employment contracts and job descriptions of employees establish responsibility for the safety of official documentation and confidentiality of information that has become known due to the performance of their duties.
    4. FSCORLAB does not use information received from Customers for commercial purposes not stipulated in contracts and ensures data confidentiality.
    1. Nikita Alekseevich Nikolaev, CEO of FSCORLAB, declares his approval of this Policy, which has been announced, distributed, implemented and maintained at all levels of FSCORLAB.
    2. The Information Security Policy of FSCORLAB is a publicly available document that can be provided to all interested parties and is posted on the official website of FSCORLAB.