At Normandin Beaudry, information security management is embedded within an integrated governance, risk management and compliance framework. This approach supports the achievement of the organization’s business objectives, the protection of critical information assets and the maintenance of stakeholder trust.
Information security governance is based on a formalized structure, clearly defined roles and responsibilities, and oversight mechanisms designed to identify, assess, prioritize and address information-related risks. It is integrated into organizational processes and continuously reviewed to reflect changes in the business, technological and regulatory environments.
This governance framework is supported by:
- recognized information security principles, including confidentiality, integrity and availability;
- a structured risk management process covering the full information lifecycle;
- accountability and monitoring mechanisms for management and governing bodies;
- awareness and engagement activities aimed at supporting employee adherence to established practices.
Responsible use of artificial intelligence (AI):
Normandin Beaudry has adopted a policy governing the responsible use of AI. This policy ensures that AI use cases are aligned with organizational values, integrated into the existing governance framework and subject to rigorous risk assessments. It establishes governance, risk management, oversight and accountability mechanisms to guide the adoption, operation and evolution of AI solutions.
Directing your request:
- Information security and risk governance: Any question or request relating to information security or associated risk management should be sent to bsi “@” normandin-beaudry.ca.
- Personal information and privacy: For any questions regarding personal information, its processing or your rights, please refer to our Notice on protection of personal information page.
- Complaints: Any complaint must be submitted in accordance with the process described on the Complaints Management page.
As part of our commitment to transparency and trust, Normandin Beaudry maintains a Trust Center used to share, upon request, high-level information relating to its governance framework, information security risk management posture, responsible AI practices and compliance activities. Access to this Trust Center is governed and granted on a case-by-case basis.
Disclaimer: The information provided on this page is for general informational purposes only. It does not constitute a contractual commitment nor an exhaustive description of Normandin Beaudry’s governance arrangements, risk management processes or information security measures, which may evolve over time.