About the organization
Nebul is a European High-performance Cloud Provider focused on offering Cloud solutions with a strong emphasis on speed, data sovereignty, and local support.
We provide infrastructural solutions that make advanced technologies such as AI applications and Digital Twin solutions accessible to our customers.
Our Mission
To offer European Hyperscale Cloud solutions that enable privacy and sovereignty for European organizations, while considering the multi-cloud reality these organizations face.
Information security is crucial to Nebul as it safeguards the continuity of our business and that of our clients. By preventing security incidents and minimizing their impact, we protect both our operations and those of our clients from potential harm.
The protection of information assets is essential and focuses on three core principles:
- Confidentiality: Ensuring that information, including Personal Health Information (PHI), is accessible only to authorized individuals or systems. This prevents unauthorized disclosure of sensitive data.
- Integrity: Ensuring that information, especially PHI, remains accurate and complete throughout its lifecycle, protecting against unauthorized or unintentional changes.
- Availability: Ensuring that authorized users have timely, uninterrupted access to the information and resources they need, with a focus on maintaining continuity of care for PHI. This supports business continuity and the achievement of organizational goals.
Responsibilities:
- The management has approved this Information Security Policy
- The Information Security Officer holds the day-to-day responsibility for and manages external compliance with legal requirements, including data protection
- All employees or service providers working on behalf of the organization are obligated to protect the resources—locations, hardware, software, systems, or information—under their care and to immediately report any suspected security breaches.
- Compliance with information security procedures as outlined in the policy and guideline documents is accepted as part of standard operating procedures within Nebul. Non-compliance leads to disciplinary measures.
- All legal and regulatory requirements must be met and regularly monitored for changes by the Security Officer.
- A business continuity plan is in place. This plan is maintained, tested, and regularly reviewed.
- The information security policy is regularly reviewed and may be amended by Management to ensure continued viability, applicability, and compliance with the law and to drive continuous improvement of information security systems.
- Management is committed to ensuring compliance with applicable laws and regulations and to fostering continuous improvement within the organization through the Information Security Management System (ISMS)
Amsterdam, 1 juni 2024
Arnold Juffer – CEO