It is the policy of Solidarity First Insurance to ensure that appropriate controls and countermeasures are put in place to protect corporate and personnel data, as well as the information technology systems, and services, and equipment of Solidarity First Insurance.

1. Solidarity First Insurance is committed to protecting its information assets, personnel, intellectual property, computer systems, data, and equipment from all threats, whether internal or external, deliberate, or accidental, in a cost-effective manner. This should be achieved with minimum inconvenience to authorized users and against threats to the level of service required by Solidarity First Insurance to conduct its business.
2. Solidarity First Insurance shall adopt ISO 27001 Information Security Management System (ISMS) as a tool to implement a formal system for protecting the confidentiality, integrity, and availability of information.
3. Solidarity First Insurance is committed to complying with all regulatory and legislative requirements imposed on the organization by governmental authorities including the Central Bank of Jordan (CBJ).
4. Solidarity First Insurance is committed to satisfying the information security expectations and requirements of interested parties and providing the necessary resources to achieve this.
5. Information security risks shall be managed based on Solidarity First Insurance’s approved risk management methodology (Framework).
6. Solidarity First Insurance is committed to treating and resolving security incidents and suspected vulnerabilities per their respective nature.
7. Information security objectives will be defined based on the implemented risk assessment and will be monitored and reviewed by the Information Security Management System Steering Committee (ISMS-SC).
8. Solidarity First Insurance is committed to continually improving its ISMS through the implementation of the Plan – Do – Check – Act cycle.