MYTILINEOS has developed and is committed to the implementation of a holistic Information Security Management System, which consists of policies, procedures, and guidelines, through which the effective and efficient protection of the Company's information systems and data is achieved. The Information Security Management System is designed to support MYTILINEOS’ business objectives, to reduce the risk of breach of confidentiality, integrity and availability of corporate information and information systems, and to instill the Company's strategy and ethical values, as well as the principles of information security, in the Company's personnel.
In addition, MYTILINEOS, being fully aware of the significance of the cybersecurity threats it faces and the related potential consequences, has decided to be more vigilant against information security risks, which is achieved through the existing Information Security Management System. MYTILINEOS' objectives, responsibilities, accountabilities, and commitments are communicated through the Information Security Management System to all employees, partners and third parties involved.
Ensuring smooth business operations, protection of corporate and personal data and a high level of compliance with effective regulatory requirements.
A decisive factor for the effective maintenance of an adequate level of cybersecurity is the successful identification of the most critical information security risks that are directly related to the size of MYTILINEOS, the nature and scope of its business activities and services offered, as well as its active partnerships with third parties. MYTILINEOS identifies as most significant the risks that arise from targeted cyber-attacks, which aim to disrupt the Company's proper operation. Indicative examples of such attacks include Distributed Denial of Service attacks, as well as attacks with malicious encryption software or ransomware. At the same time, in the context of safeguarding human rights, MYTILINEOS recognizes the risk of data leakage to unauthorized entities as equally important, which may occur intentionally or unintentionally, due to human error.