# Implementation of Information Security Management System

<details>

<summary>Has the Information Security Policy and regulations regarding the processing and protection of personal data been implemented?</summary>

Yes.

Implemented and confirmed with ISO 27001 and ISO 27018 certification. ISMS-01 Information Security Process Book DP-01 Personal Data Security Policy

</details>

<details>

<summary>Has the instruction for managing IT systems used for processing personal data or other internal regulations regarding IT infrastructure management been implemented?</summary>

Yes.

Implemented and documented procedure DO-02: Instruction for managing IT systems.

</details>

<details>

<summary>Has the implemented Information Security Policy and regulations regarding personal data protection been accepted by the management team?</summary>

Yes.

</details>

<details>

<summary>Do we ensure the capability to continuously maintain the confidentiality, integrity, availability, and resilience of processing systems and services?</summary>

Yes.

</details>

<details>

<summary>Are the Information Security Policy and regulations regarding personal data protection published and accessible to staff (employees/contractors)?</summary>

Yes.

</details>

<details>

<summary>Does the data processor implement the principle of data protection by design?</summary>

Yes.

We operate in accordance with the principles of Privacy by Design and Privacy by Default.

</details>

<details>

<summary>Does the data processor implement the principle of data protection by default?</summary>

Yes.

We operate in accordance with the principles of Privacy by Design and Privacy by Default.

</details>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.emaillabs.io/en/faq/emaillabs-safety-center/implementation-of-information-security-management-system.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.