Get a Demo
Get a Demo

Information Security Policy

Last Updated: December, 2025

Cyber Universe Europe Ltd. is committed to protecting the confidentiality, integrity, and availability of its information assets. This overarching policy establishes the framework for managing information security across the entire organization and its supply chain.

1) Information Security Requirements and Business Alignment

Cyber Universe Europe Ltd. shall establish and maintain a clearly defined set of Information Security Management System (ISMS) requirements.

  • Business Alignment: All ISMS activity must directly contribute to achieving documented business objectives.
  • Compliance Integration: The planning process will incorporate and document all statutory, regulatory, and contractual requirements.
  • System Design: Security specifications for new or changed systems must be captured and integrated during the design phase of each project.
  • Fundamental Principle: Implemented controls must be driven by demonstrable business needs. This critical alignment shall be continually reinforced and communicated to all personnel via official briefings and meetings.

2) Framework for Setting Objectives

To ensure continuous improvement, Information Security objectives will be set through a regular cycle.

  • Cycle Alignment: Objectives setting will coincide with the budget planning cycle to secure adequate funding for improvement activities.
  • Basis for Objectives: Objectives shall be based on a clear understanding of business requirements, informed by the management review process and views obtained from relevant interested parties.
  • Monitoring and Review: Objectives shall be documented for an agreed period, detailing the achievement plan. They must be evaluated and monitored as part of the management review to ensure ongoing validity.
  • Change Management: If amendments are required to the objectives, they shall be managed strictly through the formal change management process.

3) Continual Improvement of the ISMS

    Cyber Universe Europe Ltd.'s policy regarding continual improvement is focused on achieving and maintaining world-class information security standards:

  • Effectiveness: Continually improve the effectiveness of the ISMS.
  • Good Practice: Enhance current processes to align them with good practice as defined within ISO/IEC 27001 and related standards.
  • Certification: Achieve and maintain ISO/IEC 27001 certification on an ongoing basis.
  • Proactivity: Increase the level of proactivity (and stakeholder perception of proactivity) concerning information security.
  • Measurability: Make information security processes and controls more measurable to provide a sound basis for informed decision-making.

4) Information Security Policy Areas (Supporting Documentation)

This overarching policy is supported by a comprehensive set of detailed policy documentation. Each supporting policy is defined and agreed upon by personnel with competence in the relevant area, formally approved by management, and communicated to the appropriate internal and external audience.

5) Policy Review and Clarification

  • Review: This policy shall be reviewed annually and updated as necessary to ensure ongoing compliance with UK legislation and best practice.
  • Clarification: If any part of this policy is unclear, clarification should be sought from info@cyberuniverse.uk