Back to portal

Information Security Policy

agap2 Spain is a technology and engineering consulting firm that drives digital transformation through innovation and technical excellence. Founded in 2008 in Barcelona and expanding to Madrid in 2022, the company is part of the moOngy Group, reinforcing its presence across the European market. agap2 Spain operates based on core values of agility, transparency, and integrity, partnering with clients to deliver impactful, secure, and future-ready solutions.

Recognizing that information is one of the organization’s most valuable assets, agap2 Spain is fully committed to protecting its confidentiality, integrity, and availability. Information security is embedded in our culture and management practices and is vital to ensure the trust of our clients, partners, and employees.

Aligned with the ISO/IEC 27001:2022 standard, this policy outlines our commitment to:

  • Establishing and maintaining an Information Security Management System (ISMS) that supports our strategic objectives and ensures appropriate governance of information security;
  • Ensuring compliance with all applicable legal, regulatory, and contractual requirements regarding information security;
  • Identifying and managing information security risks, ensuring they are assessed, treated, and monitored in a structured and continuous way;
  • Safeguarding information assets, by ensuring confidentiality, integrity, and availability of information across all operations;
  • Promoting awareness and training, by fostering a security-conscious culture through continuous education and communication for all employees;
  • Driving continuous improvement, through regular reviews of the ISMS to ensure its effectiveness and alignment with the evolving risk landscape and business goals.

All employees of agap2 Spain, as well as third parties who access, process, or manage information assets on behalf of the organization, are obliged to comply with and enforce all information security policies, procedures, and controls in place.

Non-compliance may lead to disciplinary or contractual consequences, in accordance with the severity and context of the infraction. To report a security incident, please contact: security-alerts@moongy.group

Information security is everyone’s responsibility. Together, we can create a resilient and trustworthy digital environment.

Barcelona, 04 June 2025

_______________________

Florent Woehrle
Operation Manager