Back to Home

Information Security

Information Security Policies

Information Security Policy

We are an organization dedicated to providing Contact Center Services for Credit Portfolio Administration and Recovery in Extrajudicial and Judicial Form, Notifications, as well as Customer Service.

We are committed to comply and exceed the requirements applicable to the security of information systems and to guarantee their confidentiality, integrity and availability through continuous improvement of processes and assets, compliance with information security objectives and adhering to applicable legal regulations.

V-2 January 2021

Policies for Suppliers and Visitors

Dear Provider or Visitor:

In order to access and remain in our facilities you must read and apply the following information security policies:

Register your entry at the building or parking access module, as well as with the Police Officer and at Reception, fully identifying yourself and wearing your badge in a visible place at all times.

If you bring computer equipment, you must declare and register it upon entry. Computer equipment can only be used in reception areas and meeting rooms, being strictly prohibited to enter it into secure areas (operation, administration or site facilities) except with Management permission.

The use of cell phones, smartwatches or tablets is only allowed in the reception area and meeting and training rooms. Their use within secure areas is at the discretion of the accompanying staff.

It is prohibited for providers or third parties to access restricted sites or areas for which they have not been authorized, or to wander through hallways or stairs.

It is prohibited to take photographs or video recordings in any area of the company.

Removable storage devices (USB, MICRO SD, external HDD, among others) are prohibited within secure areas (Operation, administrative and site areas).

It is strictly prohibited to enter the facilities under the influence of drugs, narcotics or alcoholic beverages, as well as smoking within the facilities.

Consequences of Non-Compliance

In case any third party or supplier fails to comply or flagrantly violates any of these provisions, they will be asked to leave the facilities immediately and additionally be potentially subject to legal sanctions.

Access Control

Vehicle Entry

All employee vehicles must be registered when entering and leaving the parking lot. Registration will be done through the magnetic card provided for this purpose by the security area upon prior authorization from management.

All visitor vehicles requiring access to company facilities must be registered and inspected in advance by security personnel to prevent the entry of equipment and dangerous objects that pose risks to personnel or company property.

Exit Inspection

Personnel exit from facilities must be controlled through the following measures:

  • Employees must register their exit through their identification badge
  • External personnel or visitors must show their visitor badge and register their exit
  • Security personnel must ensure that no person removes furniture, computer/electronic equipment, work tools or documents without formal authorization from the responsible area
  • Security personnel may conduct an inspection of briefcases, bags and bundles leaving the facilities

Office Security

All offices and facilities of Bufete Jurídico Pazos Chávez must comply with the following controls:

  • Offices must avoid access to the general public
  • Departmental photocopying, printing or fax equipment should preferably be within secure areas and under the supervision of authorized personnel
  • Doors and windows must remain closed in the absence of personnel working in the offices
  • The use of photographic, video or audio recording equipment is not allowed unless there is express authorization from Management

Mobile Communication Devices Policy

It is strictly prohibited for personnel working within the facilities of Bufete Jurídico Pazos Chávez S.C. to bring cell phones, tablets, laptops or any other radio communication device. Personnel are required to leave such devices in their assigned locker in the dining area before entering to perform their duties.

In the event that operational personnel are caught bringing their cell phone into the facilities, security personnel will confiscate it and keep it in custody until the employee's departure time. This act will be notified to the immediate supervisor of the person involved who will initiate the applicable administrative sanction process.

Personnel performing duties outside the facilities will receive communication equipment from the company, obligating the personnel to sign the letter of responsibility for the use and custody of the entrusted equipment.

Persons identified as visitors may bring their mobile communication equipment upon registration with security personnel.

Storage Devices Policy

The use of any removable information storage device is prohibited, such as Flash drives, Portable hard drives, memory cards, zip drives, etc.

The Systems Management is required to implement physical and technological control means to ensure the non-operation of removable storage devices in computers assigned to unauthorized operational and administrative personnel.

The Systems area and Company Management are authorized personnel for the use of these devices, committing to compliance with confidentiality and non-disclosure regulations applicable by the information owner.

Internet Access Policy

Internet use privileges will be limited by the access need required by the development of each user's function.

Requests for new user codes and changes to access privileges will be presented in writing with the approval of the head of the area to which the user belongs and company management.

For users registered as visitors who require internet service, this service will be provided upon prior authorization from Systems Management. In no case will access be granted through the corporate network, providing the service through independent ADSL equipment.

Last updated: January 2026