Commitment

At ISA Assist, we aspire to be a global leader in travel insurance and assistance. In support of this vision, and in alignment with our mission to deliver end-to-end travel insurance and assistance solutions through agile and seamless service, we are committed to protecting the confidentiality, integrity, and availability of information assets entrusted to us by our clients, partners, employees, and stakeholders. 

To achieve this, top management has established this Information Security Management System (ISMS) policy, and is committed to: 

1. Ensure that our information security practices are aligned with the specific risks, operational realities, and strategic direction of our travel insurance and assistance business. This includes addressing evolving cyber threats, safeguarding customer trust, and ensuring service continuity across digital platforms and third-party partnerships—so we can deliver reliable, secure, and customer-focused solutions globally. 

1. Establishing and maintaining a framework for setting, monitoring, and reviewing measurable information security objectives, in line with our business priorities and compliance obligations. 

1. We are committed to fulfilling all applicable legal, regulatory, contractual, and other information security requirements, including ISO 27001:2022 Information Security Management system requirements as expected by our clients, partners, and stakeholders across the regions where we operate. 

1. We are committed to the continual improvement of our Information Security Management System (ISMS) through regular reviews, risk assessments, internal audits, and the implementation of corrective and preventive actions. 

This policy is maintained as documented information, communicated across all levels of the organization, and made available to relevant interested parties as appropriate. 

Top management takes full responsibility for supporting and resourcing the ISMS to ensure its effectiveness and integration into the organization's business processes.