Security Policy

Fix Payments Inc (dba ekis)
Information Security Policy (V.20240523)
The purpose of this policy is to protect the organization’s information and information systems against internal and external threats, ensure the confidentiality, integrity, and availability of information, and comply with applicable laws and regulations.
This policy applies to all employees, contractors, suppliers, and any other entity that has access to the organization’s information.
ekis, within its objectives, seeks to provide a secure, convenient, economical, and easy-to-use service.
In order to achieve this objective and ensure the security of our users’ information, ekis commits to recording all events carried out within the platform, whether executed by end users or by the company’s operational team.
Additionally, ekis commits to appropriately managing users and their access within its technological infrastructure, providing quality in its products and processes, and maintaining a focus on continuous improvement to meet the company’s objectives and its promise to the user.
To this end, a series of processes and a set of rules for managing users and access within its infrastructure have been established.
These processes and rules are mandatory in order to support the Information Security Management System.
A formal process for managing information security incidents has been established. All incidents must be reported immediately to the Information Security Officer (ISO). An analysis of the incidents will be conducted, and corrective measures will be implemented.
The organization will comply with all applicable laws, regulations, and standards in the field of information security. Internal and external audits will be conducted to verify compliance with this policy.
This policy will be reviewed and updated at least once a year or as necessary to reflect changes in the threat environment or in the organization.