Business Continuity

Corporate BC & Crisis Management Policy

Objective

Enable the organization to continue operating at a minimum acceptable level, recovery business processes and keep a resilient approach

Scope

It applies to all NTT DATA Europe & LATAM entities to ensure the continuity of the core and support processes as well as the critical business services and projects

Key policy statement

Our Top Management is committed to embrace the BC & CM within the organisation.

People safety is our priority in a normal situation as well as during a crisis

We provide the financial and non-financial resources required to ensure the BC & CM objectives.

Our Business Continuity Management System (BCMS) follows a unified framework aligned with ISO 22301 and industry best practices.

We update BC & CM framework documents regularly.

Our BC & CM management involves three layers with defined roles for handling contingencies.

We maintain a clear and effective communication process to inform our stakeholders during a disruption.

We integrate BC & CM into our culture, engaging all employees in supporting and improving our BCMS through targeted training.

Our BCMS undergoes continuous improvement supported by the Exercise & Testing program

Corporate BCP

At NTT DATA we are committed to the development of a Business Continuity Plan (BCP) that allows the company to be prepared to respond to an incident, minimizing its impact on business processes and guaranteeing the availability of our services in all levels involved until normal operating levels are recovered.

The corporative BCP covers these unavailability scenarios:

• People

• Facilities

• Systems

• Suppliers

Key points

Protect and guarantee the safety of our employees, external personnel, collaborators, and any other person in our facilities, as a fundamental priority.

Be able to respond and recover from incidents that may seriously impact our results, our image in the market, or that may even threaten the existence of our company.

Maintain the level of service to which our business support areas are committed and have the necessary resources to continue the operations of our fundamental structure, to allow recovery with the least possible damage after a crisis.

Safeguard the reputation and brand image of the NTT DATA Group.

Organisational model

Types of crisis

Communication channels

Training

The Corporate Business Continuity Plan Training is mandatory for Noggin team members, and it is necessary to repeat it every two years.

Tests

Tests will be performed at least once a year, alternating different types as necessary