Version: 1.0
Effective Date:29th March, 2023
Approved by: Management, Dubai Tech
Reviewed on:20^th March, 2023

At DT IT Solutions and Services (FZC), we recognize that information security is critical to the trust our customers place in us, the continuity of our operations, and the protection of our intellectual and customer assets. This Information Security Management System (ISMS) Policy Statement outlines our commitment to safeguarding the confidentiality, integrity, and availability of all business information, in line with global best practices such as ISO/IEC 27001.

Policy Objective

Our objective is to establish, implement, operate, monitor, review, maintain, and continuously improve an Information Security Management System that supports our business processes and protects all information assets — whether they are stored, processed, or transmitted.

Our Commitments

• Protecting Information Assets: We ensure that all customer, employee, vendor, and company data is handled securely, whether physical or digital.
• Compliance: We are committed to meeting applicable legal, regulatory, and contractual requirements related to information security and data privacy.
• Risk Management: We assess and manage security risks across our systems, processes, and people to minimize potential business disruptions.
• Access Control: Only authorized individuals shall have access to information and systems, based on the principle of least privilege.
• Business Continuity: We have implemented backup and disaster recovery mechanisms to ensure the continuity of critical services.
• Employee Awareness: All DT employees and contractors are regularly trained on information security awareness, roles, and responsibilities.
• Incident Response: We have procedures in place to detect, report, respond to, and recover from information security incidents.

Scope

This policy applies to:

• All Dubai Tech employees, contractors, and third parties
• All information systems, infrastructure, networks, and assets managed by Dubai Tech
• All locations where Dubai Tech operates, including remote or cloud environments

Implementation & Monitoring

Dubai Tech’s ISMS is driven by a risk-based approach and is integrated with our wider corporate governance. It is regularly monitored, reviewed, and updated to address emerging threats, vulnerabilities, and changes in business operations.

We are committed to continual improvement through audits, management reviews, corrective actions, and performance evaluations.

Responsibility

The Information Security Officer (ISO) is responsible for managing the ISMS and ensuring compliance with this policy. However, all staff share responsibility for protecting Dubai Tech’s information assets and are expected to follow applicable security procedures and report any breaches or concerns.

Senior Management Endorsement

This policy is endorsed by Dubai Tech’s senior leadership and reflects our commitment to maintaining the highest standards of information security across all areas of our business.

For more details, contact:
📧security@dubaitech.ae