Gloco Quality S.L. is a company dedicated to the gastronomic industry that stands out for its innovation and practical knowledge.
It has a team of professionals committed to the highest standards and that adapt to the preferences of its customers, through excellence, quality and safety.
Since its incorporation, the objective of Gloco Quality S.L. is to provide a service to its customers in compliance with the established requirements, so that they obtain the maximum satisfaction with our services and the maximum privacy and security of the information of our company is guaranteed.
This objective of customer satisfaction and confidentiality of information is the cornerstone of our policy, understanding satisfaction as the fulfillment of the commitments made in the most efficient way possible, while trying to meet the non-contractual expectations arising from the needs discovered in the execution of the service and related to it, which the customer himself communicates to us.
Through the application of an Information Security Management System (ISMS), based on the requirements of the ISO/IEC 27001:2022 standard, we pursue a continuous improvement in the quality of the services and continuity of the activities carried out by our organization, as well as a continuous commitment to the technical improvement of our systems, assets and processes and that of our suppliers, in order to ensure a continuous adaptation to the technological needs of our customers.
For this, Gloco Quality S.L., considers the basis of this policy as basic pillars of the organization to achieve continuous improvement of the effectiveness of the management system, the following guidelines, which will serve as the basis for the establishment of our annual objectives:
- To ensure the satisfaction of its customers based on a correct treatment and a continuous effort in the provision of the service based on their requirements and our commitment to updates and improvements.
- Comply with the requirements of customers and their stakeholders, as well as with the legal and regulatory requirements that affect the performance and provision of the services rendered.
- Comply with applicable legal requirements, as well as with those requirements to which the organization subscribes, continuously evaluating such compliance in all areas of activity.
- Conscientiously evaluate the organization’s risks, analyzing the possible risks of each and every one of the organization’s processes and information assets, thus foreseeing and avoiding deviations, taking the appropriate decisions to minimize possible non-conformities.
- Establish operational processes that safeguard people, property, information, data and applications or systems of use for the instances established by the organization.
- To ensure a continuous and permanent updating of our resources, both technological and, above all, of our personnel, promoting information policies and continuous professional training that allow them to advance in their knowledge at the same pace as our sector, promoting awareness of information security, in order to increase the competence of our employees.
- Establish and regularly review the Objectives, in accordance with the commitments made in this declaration, strengthening the commitment and participation of all personnel in the development and achievement of the Objectives.
- To guarantee continuous improvement, maintaining the System in an efficient and effective way to verify the commitment with the clients, seeking for a better internal organization of the work and in the way in which we treat the information of our clients.
- Ensure that information security and respect for personal data are a constant:
-
- Preserving the confidentiality of the information and preventing its disclosure and access by unauthorized persons.
- Maintaining the integrity of the information by ensuring its accuracy and avoiding its deterioration.
- Ensuring the availability of information in all media and whenever necessary.
- Management, for its part, especially values and establishes as the main criterion for estimating its risks the assessment of the availability, confidentiality and integrity of its information and, even more so, that of its customers.
SCOPE
The organization establishes for ISO/IEC 27001:2022 this policy that applies to. “the information systems that support the management and delivery services of mass catering services.“
MISSION
Gloco Quality S.L.’s mission is to provide services in the food sector, with a team committed to the customer, excited about their professional development, supported by advanced, modern and safe technology.
REGULATORY FRAMEWORK
Gloco Quality S.L. strives to comply with all legislation applicable to its activity, whether general (Civil Code, Commercial Code, etc.) or specific, such as the following:
- Organic Law 3/2018 of December 5, 2018, on the protection of personal data and guarantee of digital rights.
- ISO 27001:2022, Information Security Management Systems
- Law 34/2002 of July 11, 2002, on Information Society Services and Electronic Commerce.
- Law 39/2015 of October 1, 2015, Common Administrative Procedure of Public Administrations.
- Law 40/2015 of October 1, 2015, Legal Regime of the Public Sector.
- CCN-STIC 800 series guides as document structuring guides.