Information Security Management System

SHOWERTHINKING, aware that the security of information related to our clients is a highly valuable asset, has established an Information Security Management System (ISMS) in accordance with the requirements of the ISO/IEC 27001:2022 standard in order to ensure the continuity of information systems and their continuous improvement, minimize the risk of damage, and guarantee compliance with established objectives.

The purpose of the Security Policy is to define the framework of action necessary to protect information assets against internal or external threats, whether deliberate or accidental, in order to ensure the confidentiality, integrity, and availability of information.

The effectiveness and implementation of the Information Security Management System is the direct responsibility of the Information Security Committee, which is responsible for the approval, dissemination, and enforcement of this Security Policy. On its behalf, an Information Security Management System Manager has been appointed, with sufficient authority to play an active role in the Information Security Management System by supervising its implementation, development, and maintenance.

The Information Security Committee will develop and approve the risk analysis methodology used within the Information Security Management System.

Any person whose activity may be directly or indirectly affected by the requirements of the Information Security Management System is required to strictly comply with the Security Policy.

At SHOWERTHINKING, all necessary measures will be implemented to comply with applicable regulations regarding general security and information security, including IT policies, the security of buildings and facilities, and the conduct of employees and third parties associated with SHOWERTHINKING in their use of information systems. The necessary measures to ensure information security through the application of standards, procedures, and controls must guarantee the confidentiality, integrity, and availability of information, which are essential to:

Comply with current legislation regarding information systems.
Ensure the confidentiality of the data managed by SHOWERTHINKING.
Ensure the availability of information systems, both for services provided to clients and for internal management.
Ensure the ability to respond to emergency situations by restoring the operation of critical services as quickly as possible.
Prevent unauthorized alterations of information.
Promote awareness and training in information security.

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	This cookie is set by GDPR Cookie Consent plugin. The purpose of this cookie is to check whether or not the user has given their consent to the usage of cookies under the category 'Advertisement'.
cookielawinfo-checkbox-analytics	1 year	This cookie is set by GDPR Cookie Consent plugin. The purpose of this cookie is to check whether or not the user has given the consent to the usage of cookies under the category 'Analytics'.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-non-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Non Necessary".
cookielawinfo-checkbox-performance	1 year	This cookie is set by GDPR Cookie Consent plugin. The purpose of this cookie is to check whether or not the user has given the consent to the usage of cookies under the category 'Performance'.
cookielawinfo-checkbox-preferences	1 year	This cookie is set by GDPR Cookie Consent plugin. The purpose of this cookie is to check whether or not the user has given the consent to the usage of cookies under the category 'Preferences'.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
__cfruid	Persistent	The ‘__cfduid’ cookie is set by the CloudFlare service to identify trusted web traffic. It does not correspond to any user id in the web application, nor does it save any personally identifiable data
test_cookie	11 months	This cookie sets DoubleClick (which is owned by Google) to determine if the website visitor's browser supports cookies.

Cookie	Duration	Description
YSC	Session	This cookies is set by Youtube and is used to track the views of embedded videos.
YTC	10 minutes	This cookie is set by Youtube to manage the embed and viewing of videos on our website

Cookie	Duration	Description
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, camapign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assigns a randoly generated number to identify unique visitors.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the wbsite is doing. The data collected including the number visitors, the source where they have come from, and the pages viisted in an anonymous form.
GPS	30 minutes	This cookie is set by Youtube and registers a unique ID for tracking users based on their geographical location
pardot		The cookie is set when the visitor is logged in as a Pardot user.

Cookie	Duration	Description
IDE	2 years	Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
VISITOR_INFO1_LIVE	5 months	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.