ESTUDIO JURÍDICO EJASO, S.L. is a multidisciplinary law firm that provides comprehensive legal advisory services to national and international clients, committed to delivering excellent, rigorous service aligned with our clients' needs and the highest professional, ethical, and security standards.
Management establishes this Policy as the reference framework for the Integrated Management System in accordance with ISO 9001:2015, ISO/IEC 27001 standards and the National Security Framework (ENS), and undertakes to:
Understand and meet the needs and expectations of our clients and stakeholders by offering effective, tailored, and results-oriented legal solutions. We are also committed to ensuring the confidentiality, integrity, availability, authenticity, and traceability of the information managed, protecting information assets against internal and external threats.
Comply with all legal and regulatory requirements applicable to the legal profession, as well as contractual obligations agreed with clients. This includes strict compliance with legislation on Personal Data Protection, Intellectual Property, and the current regulations of the National Security Framework.
Promote specialization, continuous training, and professional development of our lawyers and support staff. We are committed to fostering a security culture through ongoing training and awareness in cybersecurity and data protection, ensuring that all personnel understand their responsibilities in the secure use of systems.
Manage the firm through a process-based approach, identifying risks (both quality and information security) and opportunities. Security measures proportional to the classification of information will be applied to prevent incidents, minimize their impact, ensure business continuity, and strengthen our clients' trust.
Promote continuous improvement of the Integrated Management System through the monitoring of quality indicators and security metrics, performance evaluation, management of incidents, complaints, and security events, as well as periodic internal audits and management reviews.
Ensure that this Policy is known, understood, and applied by all personnel of the firm and is available to relevant stakeholders. We promote a culture of quality, responsibility, and security at all levels of the organization.
This Policy is periodically reviewed to ensure its alignment with the firm's strategy, the evolution of the technological context and threats, and the established quality and security objectives.
Policy approved by EJASO Management on March 23, 2026.
España & Portugal
