EUROFRAGANCE, S.L.U. is committed to ensuring the protection of its information assets and the continuity of essential services. This policy establishes the framework for defining security objectives aligned with the business strategy and is consistent with international standards on information security.

The preservation of the following principles is ensured across all media (electronic, physical, or verbal):

• • Confidentiality: Access is limited to authorized individuals based on necessity and legitimacy.
  • Integrity: Information must be accurate, complete, and protected against unauthorized modifications.
  • Availability: Timely access to information and essential services must be guaranteed.

Management and all employees of EUROFRAGANCE S.L.U. are committed to promoting and supporting the implementation of the necessary technical and organizational measures to minimize potential risks to which information is exposed, in order to achieve the company’s strategic business objectives. Priority is given to protecting critical and sensitive processes, seeking a balance between an acceptable level of risk and the cost of safeguards.

This policy applies comprehensively to physical, logical, organizational, and legal security.

Management demonstrates its formal commitment to supporting the security plans derived from the implementation of this integrated Policy by providing:

• • Adequate human and financial resources.
  • Clear assignment of roles and responsibilities.
  • Awareness and continuous training programs for all personnel.
  • Oversight to ensure the proper functioning of the Management System.
  • Coordination with cybersecurity authorities and regulatory bodies.
  • Promotion of the development of this Policy.