Hyverr, s.r.o. (hereinafter the “Company”) focuses on improving work in the field of bespoke software design and development across a broad range of clients and specializations, primarily through high-quality, modern IT software solutions. These enable the Company to deliver higher-quality, more comprehensive solutions with a significant impact on the results of individual clients. The Company aims to streamline clients’ core business through its applications and tools, which emphasize a personal approach and tailor-made solutions.
To enhance the quality of its services, and as a company aware of its business and environmental responsibility, the Company has implemented an Integrated Management System (IMS) that meets the requirements of the international standard ISO/IEC 27001. In addition, for the quality of delivered services, the Company voluntarily adheres to the principles of international standards ISO 9001, ISO 14001, and ISO 45001.
The Company’s management proclaims the IMS Policy as evidence of its commitment and active role in developing, applying, and improving the implemented and certified IMS, and declares that fulfillment of the IMS Policy by all Company employees is one of the key tasks aimed at increasing the Company’s performance, strengthening occupational safety and health, maintaining an environmentally considerate approach, ensuring information protection, and achieving greater satisfaction of all stakeholders—especially customers, shareholders, employees, and suppliers—in accordance with legal regulations. The IMS Policy has become an integral part of the Company’s long-term strategy, and the Company’s management undertakes to fulfill it and supports its mission.
The Company’s management has established the following principles by which it undertakes to be guided:
I. Cooperation with Employees
Support employees in raising their professional knowledge, improving and broadening qualifications at all levels, and cooperate with employees in risk mapping, setting IMS objectives, communicating, and ensuring understanding of the IMS Policy.
Create a team of employees who are satisfied in their work, capable not only of delivering good work of high quality, but also of being a source of new ideas.
Every employee is convinced of the importance of continuously ensuring the security of the information they work with and knows their responsibility and position within the ISMS.
Every employee who has been granted access to information resources for the purposes of their work assumes responsibility for handling these resources securely and for protecting information within their remit, bears their share of responsibility for adhering to these rules, and all employees are aware that violations of information security principles constitute a security incident that affects the Company’s image and can have serious financial consequences for the Company.
All employees are obliged to respond in the prescribed manner to defects, failures, and imminent incidents that occur and to report them in accordance with approved internal procedures in force within the Company.
II. IMS
Regularly review the IMS Policy for suitability and alignment with the Company’s long-term strategy, stakeholder requirements, and international standards ISO 9001, ISO 14001, ISO 27001, and ISO 45001.
Ensure the IMS Policy is available to the public and to stakeholders.
Deliver quality in all processes for both internal and external customers, and enforce this principle with everyone who hands over a part of the work.
Prevent emergency situations that could ultimately have an adverse effect on the environment.
Build the image of a Company that is not indifferent to the environmental impacts of its activities and that cares about carrying out and ensuring all its activities in accordance with OH&S and fire protection principles.
Set objectives with target values and IMS programs to ensure continual improvement of the IMS.
Ensure compliance with legal norms, legislative requirements, and other obligations in all areas where the Company operates, including legal and other requirements to which the Company has committed and which relate to its environmental aspects, occupational and information risks, OH&S and fire protection; and develop communication and cooperation with stakeholders.
Regularly monitor and evaluate risks associated with information leakage, and in this context, management sets appropriate measures leading to risk reduction.
Establish a security framework for protecting Company data and information; regularly evaluate the suitability and effectiveness of this framework in light of emerging threats and risks.
III. Partnerships with Customers, Suppliers, and the Public
As a means to customer satisfaction, prioritize quality above other criteria as a fundamental prerequisite for competitiveness, always ensuring OH&S and minimizing negative environmental impacts of activities.
Understand the deepening of customer trust as a continuous process and a permanent source of prosperity.
Provide effective assistance to all customers who expect or need help.
Create the perception of the Company as a supplier of high-quality, comprehensive services with sufficient financial, organizational, personnel, and other resources to ensure the quality of services required by the customer.
Require contractual partners to take an active approach to environmental protection, occupational safety, and information security.
Build mutually advantageous supplier relationships that will enable, where needed, a jointly agile response to customer requirements.
Effectively address financial, market, technical, information, and social risks.
Ensure that our customers’ data do not reach third parties not authorized to access such data, in accordance with contractual requirements and applicable legal regulations.
Fulfill applicable requirements of legal regulations and other obligations to which the Company has committed within contractual relationships, in line with the activities performed.
Accepted QMS Commitments:
Continually improve the effectiveness and efficiency of the implemented IMS.
Create conditions and resources for the effectiveness and efficiency of the implemented IMS.
Provide customers with services that meet their requirements or anticipated requirements and continually improve service quality while maintaining mutually beneficial business relationships and respecting legal requirements.
Accepted EMS Commitments:
Continually improve the effectiveness and efficiency of the EMS.
Monitor and evaluate the Company’s environmental profile and take measures leading to environmental protection and improvement of the environmental management system.
Comply with relevant legal requirements and other obligations to which the Company is subject in the environmental area.
Adhere to the principle of preventing environmental pollution.
Accepted OHSMS (SMS) Commitments:
Continually improve the effectiveness and efficiency of the OHSMS.
Continuously monitor the level and scope of occupational risks.
Pay increased attention to occupational health care.
Adopt preventive measures to avoid occupational injuries and damage to health.
Fulfill applicable requirements of legal regulations and other obligations to which the Company has committed, in line with the activities performed.
Accepted ISMS Commitments:
Continuously monitor the level of security risks and, for this purpose, set documented criteria by which risk is assessed.
The criteria for risk assessment are the probability of loss of information, the severity of loss of information, and the value of the asset.
Regularly monitor and evaluate risks associated with information leakage, and in this context, management sets appropriate measures leading to risk reduction.
Network service configuration adheres to the principle “What is not permitted is prohibited.”
Causes of breaches of the IMS Policy will prompt their evaluation and the subsequent adoption of effective measures that take into account the lessons learned from any incidents.
Validity of the IMS Policy:
This IMS Policy is a binding management document of the Company, effective as of the date of issue. For the effective handling of the above commitments, the IMS is implemented, developed, and improved within the Company according to the requirements of international standards ISO 9001, ISO 14001, ISO/IEC 27001, and ISO 45001, taking into account the fact that the Company is certified under ISO/IEC 27001.
To ensure the above commitments, the Company’s management establishes the IMS Policy, sets IMS objectives, target values, and programs in the area of IMS, and conducts a regular review of the IMS once per year, so as to ensure the ongoing suitability, adequacy, effectiveness, and improvement of the implemented IMS.
Prague, 1 June 2024
Jaroslav Vostárek, CEO
