Integrated Policy

The main objective of our organization is to ensure customer satisfaction, environmental protection, and information security through an integrated approach that synergistically considers quality, sustainability, and safety. In pursuing these goals, we are committed to adopting an Integrated Management System in compliance with international standards ISO 9001, ISO 14064-1, and ISO/IEC 27001, promoting the continuous improvement of our performance, process efficiency, reduction of environmental impacts, and the protection of data and information — whether corporate or belonging to our clients. This policy serves as a key reference for all company activities and translates into concrete, measurable actions supported by the active participation of all staff and by conscious, responsible leadership.

Certifications

The ISO (International Organization for Standardization) certifications we hold are international standards that define requirements and guidelines to ensure the quality, efficiency, and security of products, services, information, and management systems within organizations. These ISO certifications are the result of our ongoing commitment to continuous improvement and adherence to standards of excellence.

ISO9001

Since 2017, Abstract has chosen to align itself with the ISO 9001 standards, obtaining certification. ISO 9001 and all its updates are published by the International Standards Organization (ISO). The ISO 9001:2015 standard is an international benchmark for quality management systems that provides a framework and a set of best practices to help any organization improve the quality of its products and services. The core theme of ISO 9001:2015 is the quality system, which can be defined as the combination of all processes, resources, assets, and cultural values that support the goal of customer satisfaction and organizational efficiency.

ISO27001

For Abstract, Information Security Management has always been of fundamental importance. For this reason, since 2023 Abstract has completed the alignment of its practices with the framework of ISO/IEC 27001 – Information Technology – Security Techniques – Information Security Management Systems – Requirements. ISO/IEC 27001 is the leading international standard focused on information security, published by the International Organization for Standardization (ISO) in collaboration with the International Electrotechnical Commission (IEC). Both are major international organizations that develop globally recognized standards. In 2023, Abstract obtained the ISO 27001 certification. However, this standard is not limited to cybersecurity alone — it represents a comprehensive system designed to ensure the management of physical, environmental, and organizational security, to which our organization has chosen to fully adhere.

ISO14064

Abstract has always been deeply committed to environmental responsibility. For this reason, the company chose to align itself with ISO standards, obtaining ISO 14064-1 certification in 2023. The International Organization for Standardization (ISO) developed the ISO 14064-1 standard in 2006. This environmental certification enables organizations to quantify and report greenhouse gas emissions and to establish activities aimed at their reduction or removal. The standard defines the requirements necessary to implement these activities effectively. It also calls for the implementation of a management system that allows organizations to identify major sources of emissions and adopt specific measures to address them.

Code of Ethics

The Code of Ethics expresses the principles and values that guide Abstract in conducting its business and corporate activities, setting the standards for the behavior of the company and its employees or collaborators. The Code represents an essential and complementary element of the Organization, Management, and Control Model adopted by Abstract in accordance with Legislative Decree 231/2001. Legislative Decree No. 231/2001 introduced into the Italian legal system the “Regulation on the administrative liability of legal entities, companies, and associations, including those without legal personality.” To ensure greater compliance with this Decree, Abstract has adopted this Code, which serves as an official company document outlining the rights, duties, and responsibilities that the company assumes toward all stakeholders. It complements the Organizational Model by articulating and communicating the values and rules of conduct that are fundamental to the company.

Organizational, Management, and Control Model (MOGC)

Abstract has adopted an Organizational, Management, and Control Model (MOGC) that defines both behavioral and individual standards. It identifies the control measures that must be implemented to prevent the risk of committing the offenses outlined in Legislative Decree No. 231 of 2001 and to exclude or limit the resulting administrative liability of the Company. A Supervisory Body has been appointed to monitor the operation and effective implementation of the Model. The approved Model consists of a General Section and a Special Section, divided into several parts. The General Section of the MOGC illustrates the rationale and principles of Legislative Decree 231/2001, the governance framework, the internal control and risk management systems, and outlines the components of the Model, including the role of the Supervisory Body. The methodology used in developing the Model takes into account the most significant legal precedents, best practices for applying the Decree, and relevant industry guidelines.