Granadev Logo

Integrated management policy

Granadev S.L. is part of the Aircury group. The AIRCURY group is a business group dedicated to the design, development, deployment, operation and maintenance of software solutions and digital services, supported by cloud infrastructures and a predominantly remote working model, serving national and international clients.

AIRCURY group management recognises that service quality, environmental protection, effective management of information technology services and information security are strategic elements for sustainability, customer trust, regulatory compliance and business continuity.

To this end, AIRCURY establishes and maintains an Integrated Management System, in accordance with ISO 9001, ISO 14001, ISO/IEC 20000-1, ISO/IEC 27001 and the requirements of the National Security Scheme (Royal Decree 311/2022), committing to its implementation, maintenance and continual improvement.

Management

AIRCURY group management commits to:

  • Providing the resources needed for the Integrated Management System to function properly.
  • Ensuring leadership, accountability and engagement at all levels of the organisation.
  • Integrating quality, environmental, service management and information security principles into strategy and business processes.
  • Fostering a preventive culture focused on continual improvement, risk management and operational excellence.

Quality

AIRCURY, regarding quality, commits to:

  • Providing software services and solutions that meet applicable customer, legal and contractual requirements.
  • Ensuring the planning, control and improvement of processes supporting service delivery.
  • Measuring and analysing process performance and customer satisfaction as a basis for continual improvement.
  • Managing risks and opportunities that may affect the quality of services provided.

Environment

AIRCURY accepts its responsibility for environmental protection and commits to:

  • Complying with applicable environmental legislation and other requirements subscribed by the organisation.
  • Preventing pollution and minimising environmental impacts arising from its activity, especially those associated with technological and energy resource use.
  • Promoting efficient resource use, reducing consumption and proper waste management.
  • Integrating the environmental perspective into decision-making and continual improvement of the management system.

IT services

AIRCURY, regarding IT services, commits to:

  • Planning, designing, delivering, operating and improving information technology services in a controlled manner aligned with business and customer needs.
  • Defining and maintaining service level agreements, support processes and performance monitoring mechanisms.
  • Managing incidents, problems, changes and service continuity appropriately.
  • Ensuring alignment between IT service management and the organisation’s strategic objectives.

Information security

AIRCURY recognises that information and the systems supporting it are critical assets and commits to:

  • Protecting the confidentiality, integrity, availability, authenticity and traceability of information.
  • Complying with ISO/IEC 27001:2022 and National Security Scheme requirements, according to the defined scope and categorisation level.
  • Applying a risk-based approach to identify, assess and treat threats that may affect information and services.
  • Implementing appropriate technical, organisational and procedural controls to prevent security incidents and respond effectively to them.
  • Ensuring service continuity and resilience of information systems.

People

The AIRCURY group and its people commit to:

  • Ensuring staff competence and training in relation to quality, the environment, service management and information security.
  • Raising awareness and individual responsibility for compliance with established policies, standards and procedures.
  • Promoting active staff participation in improving the Integrated Management System.

Compliance

AIRCURY compliance management commits to:

  • Identifying and complying with legal, regulatory and contractual requirements applicable to its activity.
  • Periodically evaluating Integrated Management System performance through monitoring, measurement, internal audits and management reviews.
  • Applying corrective and improvement actions to increase the effectiveness, efficiency and maturity of the system.
  • Maintaining this policy as a reference framework for establishing objectives and improvement plans.

This Integrated Management Policy is communicated to all staff and relevant interested parties, and is available for consultation.

The policy will be reviewed periodically, and whenever significant changes occur in the organisation, activity, context or applicable requirements.

Approved by: AIRCURY Group Management. Issue date: 12 January 2026. Official reference: aircury.es/politica-integrada.