Corporate Information Security Policy

Fiesta Tours and Travel has been a pioneer in the travel industry, and the security of information and information assets is regarded as fundamental for its successful business operations.

Fiesta Tours and Travel has adopted an Information Security Management System (ISMS) comprising information security policies, procedures, and a risk management framework to effectively protect the data/information of Fiesta Tours and Travel and its stakeholders.

Fiesta Tours and Travel is committed to ensuring that:

· The information’s confidentiality, integrity, and availability are always protected.

· All applicable legal, statutory, regulatory, and contractual requirements related to information security are identified, met, and regularly reviewed.

· Proper awareness, training, and communication of all employees regarding information security is in place.

· Appropriate physical, logical, and technological resources are allocated to implement an effective Information Security Management System.

· Measurable and time-bounded information security-related objectives and performance indicators are established, monitored, and acted upon.

Top Management has demonstrated its commitment to this Information Security Policy by engaging participation and involvement, interacting with all relevant internal and external interested parties, and regularly reviewing the policy.

Fiesta Tours and Travel will continually improve the suitability, adequacy, and effectiveness of the information security management system (ISMS)