Quality Environmental and Information Security Policy

Quality, Environmental and Information Security Policy

Company Policy Document

Total Computer Networks Limited (Total Computers) is a provider of IT products and services to medium and enterprise-sized UK organisations. It is committed to the continual improvement of its Quality, Environmental and Information Security Management activities and to conducting business to the following principles:

Total Computers strives to go above and beyond the requirements of its customers. This is achieved by providing first class service through excellence in performance that meets or surpasses customer expectations.

To achieve this, the Integrated Management System (IMS) has been implemented to meet the requirements of ISO 9001:2015, ISO 14001:2015 & ISO 27001:2022 and is focused on the customer journey and assuring the company processes are effective to meet the needs of all interested parties and risks and environmental impacts are considered at every stage.

Total Computers is committed to protecting business data. The Company will act responsibly with all data entrusted to its care and will comply with all legal and contractual obligations relating to the security of this data. For the purposes of data protection legislation, we are the data processor and process personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the UK Data Protection Act 2018 and any other applicable national laws which relate to the processing of personal data.

To give the IMS purpose and direction, SMART objectives are agreed based on the results of risk assessment activity and our overall business strategy.

Our ultimate objectives are to:

Enhance the Customer Experience, Minimise Environmental Impacts, Maximise Information Security and Mitigate Risks or reduce as far as reasonably practicable.

Total Computers reviews its Quality, Environmental and Information Security Policy annually to ensure that its objectives remain relevant and adhere to a process of continual improvement, identifying the causes of and resolutions of recurrent errors.

The Company holds and maintains a Quality, Environmental and Information Security risk register, which enables us to evaluate the confidentially, integrity and availability of all data associated with the business.

We are committed to the continued review and improvement of the IMS in order to:

Reduce the risk of incidents.
Prevent injury, Ill health, and pollution.
Protect interested parties and the environment.
Ensure continued compliance with contractual, legal, and other requirements and compliance obligations applicable to the organisation.

Via quarterly ISO Management meetings, the company reports on the status of the risk assessment, incidents, objectives, complaints, and all other relevant data as appropriate. This enables top management to evaluate if the integrated information security system is achieving its intended outcomes.

Total Computers believes that, in operating to these standards it will meet and if possible, exceed the requirements of its customers, other stakeholders and the industry.

Kevin Goodall,
Managing Director

14/02/2024