ISO Policies

Quality Policy

The Quality Policy of Orca IT Limited is to determine, agree & conform to our Client’s needs & expectations, whilst fulfilling the requirements of ISO 9001 and statutory law. All of our IT Managed Services and activities are undertaken to current revisions of British Standards and industry codes of practice.

Orca IT Limited recognises that to be competitive & maintain good economic performance in the IT Managed Services industry, we must employ management systems that continually improve the quality of our products & services that in turn increases the satisfaction of our clients, employees, shareholders, suppliers & society at large.

• Key objectives of Orca IT Limited is that the Management System provides: –
• Confidence of our Clients that their requirements for quality and safety are being achieved in the delivered product or service.
• Confidence of our management & staff that the requirements for quality are being fulfilled & maintained, & that quality improvements take place.
• A framework for establishing and reviewing quality objectives.

We are conscious that the motivation of our employees is dependent on their training and understanding of the tasks they are expected to perform. It is part of our on-going training programme that this policy is communicated and understood at appropriate levels within Orca IT Limited and interested parties.

Information Security Management System (ISMS) Policy

The ISMS Policy of Orca IT Limited is to determine, agree & conform to our Client’s needs & expectations, whilst fulfilling the requirements of ISO 27001 and statutory law.

Orca IT Limited recognises that to be competitive & maintain good economic performance in the IT Managed Services industry, we must employ management systems that continually improve the Information Security of our products & services that in turn increases the satisfaction of our clients, employees, shareholders, suppliers & society at large.

The key objectives of 27001 is that the Management System provides: –

• Orca IT Limited incorporating senior representatives from all Orca IT Limited departments, is charged with the management and approval functions associated with the ISMS.
• Orca IT Limited is charged with establishing and continually improving the ISMS.
• Orca IT Limited will provide the framework for setting objectives and establishing an overall sense of direction of principles for action with regard to security.
• The ISMS will take into account business and legal or regulatory requirements and contractual security obligations.
• The approach to information security will be based on risk, as per the ISO 27001 standard and best practice.
• The ISMS procedures will establish risk evaluation criteria that are aligned with the current Orca IT Limited approved corporate strategic risk management procedures and policies.
• The creation of the ISMS will include listing all information assets and the security risks that may arise for each. The resultant information will inform Orca IT Limited of prospective mitigation priorities.
• This ISMS policy covers all policies and procedures material to security.
• Orca IT Limited will periodically review Orca IT Limited current practices, policies and guidance to recommend any changes or improvements to ensure we apply appropriate security measures.
• We are conscious that the motivation of our employees is dependent on their training and understanding of the tasks they are expected to perform. It is part of our on-going training programme that this policy is communicated and understood at appropriate levels in the Company.