Skip to main content
Security Principles
Updated over a month ago

We recognize the importance of security for protecting sensitive healthcare information, which is why data protection underpins every facet of our business operations.

Information Security Policy

Corti is fully committed to the protection of all sensitive patient information. We recognize that all our employees are responsible for safeguarding and protecting this information which is critical to successful business operations. Accordingly, we ensure that our people and products are adequately protected and remain mindful that our business activities are of potential interest and value. Threats include our competitors or those parties that might seek to steal such information, damage our reputation, or disrupt our operations.

As CTO of Corti with responsibility for information security, I am committed to implementing this Information Security Policy where it applies to the business. Furthermore, I will advise and support to ensure the active promotion of this policy and the achievement of full compliance. This commitment is a natural and vital extension of the company's corporate governance and risk management obligations.

  • We believe the personal accountability and awareness of each and every individual is important because, without it, security is degraded and ineffective

  • We believe that information security is an integral part of our business operations

  • We believe that we must align information security with the needs of the business, and as our business changes and develops, a continuous review and improvement of our security posture will ensure consistency with business goals and objectives

  • We believe we must use resources in an intelligent and focused way to ensure that the balance between security and business operations is maintained

  • We believe an open culture must exist that supports and encourages the prompt reporting of suspected or actual breaches of security or suspicious activities

  • We apply care and diligence to meet all legal and regulatory requirements.

Did this answer your question?