Logo Logo Junker Group Square
x

Erwin Junker Grinding Technology a.s.

Information Security

1. Table of Contents

  • Table of Contents
  • Preface
  • The enterprise
  • Information Security Objectives of Erwin Junker Grinding Technology a.s.
  • Procedure and methodology
  • Role of the information security officer (ISO)
  • Role of the data protection officer (DPO)
  • Expectations of partners and suppliers

2. Preface

Erwin Junker Grinding Technology a.s. considers its main mission to be the continuous provision of high‑quality products and services to its customers. This task requires, among other things, careful handling of all confidential information. The aim is therefore to protect information as valuable assets in an appropriate manner in terms of confidentiality, availability and integrity.

To ensure safe and reliable operations, Erwin Junker Grinding Technology a.s. will continuously develop its tasks and processes, as well as the information systems required for that purpose, through appropriate measures.

This objective is supported in the long term by the Information Security Management System (ISMS) according to the requirements of the international TISAX standard, which is based on ISO/IEC 27001. In order to maintain the effectiveness of the ISMS, the system is continuously evaluated, monitored and improved where necessary. To this end, Erwin Junker Grinding Technology a.s. has implemented a comprehensive security strategy.

Information security is a matter for all employees and all departments of Erwin Junker Grinding Technology a.s. Company management bears responsibility for information security and thus also for the ISMS.

The company is committed to providing sufficient resources for the establishment and operation of the ISMS and to supporting its continuous operation.

Every employee within the ISMS scope is obliged to comply with the information security rules and is encouraged to contribute to the further development of information security by suggesting possible improvements.

3. The enterprise

Erwin Junker Grinding Technology a.s. develops, manufactures and sells high‑precision grinding machines for metal processing and filtration systems for industrial air purification.

Erwin Junker Grinding Technology a.s. is among the global pioneers in mechanical engineering and plant construction — a strong partner for customers who want to benefit from tailor‑made solutions, expert consulting, flexible financing models and uncompromising service.

4. Information Security Objectives of Erwin Junker Grinding Technology a.s.

Our employees process, transfer, store, check, evaluate and archive data and information every day for our customers as well as for ourselves. It is essential to achieve the following security objectives:

  • Handling Information Security Risks
    Erwin Junker Grinding Technology a.s. assigns high priority to the prevention of information risks, thus avoiding financial damage and reputational loss.
     
  • Security Objectives
    The confidentiality, integrity and availability of information and data of Erwin Junker Grinding Technology a.s. and its customers, service providers and suppliers is ensured.
     
  • Information Security as Part of Daily Work
    Service delivery processes are transparently designed and secured through the information security organisation (ISMS).
     
  • Risk Minimisation through a Risk‑based Approach
    Information security risks are identified and evaluated. With regard to economic efficiency, appropriate measures are developed and implemented to limit risks to an acceptable level.
     
  • Compliance
    All security‑related activities are carried out in accordance with legal requirements, standards and best practices. The relevant responsibilities are clearly defined.
     
  • Ensuring Compliance with Contractual Relationships
    Transparency of all agreements for the affected business areas and for the responsible employees, as well as for external and internal service providers, is ensured.
     
  • Information Security Requirements
    The required level of information security is derived from business needs. Project managers and other responsible employees proactively define these requirements within their area of responsibility, in cooperation with the Information Security Officer (ISB).

5. Procedure and methodology

The above‑mentioned objectives are achieved through the implementation and operation of the Information Security Management System (ISMS) according to the TISAX standard.

Within the ISMS, all information security risks that may threaten the achievement of the above objectives in relation to the company’s information assets are managed. For this purpose, a risk management process focusing on the protection of information assets is operated.

6. Role of the information security officer (ISB)

The Information Security Officer (ISB) of Erwin Junker Grinding Technology a.s. is the contact person for all matters related to information security and is responsible for the development and fulfilment of the requirements of the information security concept.

Security incidents related to information security (ISMS) are monitored by the ISB and may be delegated to the relevant specialist department.

7. Role of the data protection officer (DPO)

The Data Protection Officer (DPO) of Erwin Junker Grinding Technology a.s. is the contact person for all matters related to the protection of personal data.

He/she reports directly to company management and is tasked with determining the maturity level in the area of data protection, monitoring data protection‑related processes and providing recommendations for their improvement. He/she also advises company management on all matters concerning data protection and must always be involved in a timely manner in all significant decisions related to this area.

8. Expectations of partners and suppliers

Erwin Junker Grinding Technology a.s. expects that the relevant infrastructures and protective measures of its partners and suppliers, as well as their subcontractors, comply with the current state of the art and take into account operational processes and information security requirements. Employees of partners, suppliers and their subcontractors must be adequately trained and informed in this area.

Erwin Junker Grinding Technology a.s. reserves the right to verify this in cooperation with suppliers in an appropriate manner, for example through audits.