SOKOJ - ORGANISATION OF MUSIC AUTHORS OF SERBIA

SOKOJ

sokojAsset 2

QUALITY MANAGEMENT

In order to improve operational management and provide reliable partnership and better quality service to our clients, we implemented the Quality Management System in accordance with ISO 9001:2015 standard and Information Security Management System compliant with ISO/IEC 27001:2013.

QUALITY AND INFORMATION SECURITY POLICY

The core mission of Sokoj is collective management of copyright on behalf of over 12,000 domestic music, lyrics, and arrangement authors, and other holders od copyright in musical works of all genres. Furthermore, on the basis of more than 100 bilateral agreements with foreign copyright societies, Sokoj  also collectively manages copyright of approx. 4,500,000 foreign authors and the music copyright holders.

Sokoj has the vision to become a modern, efficient, and transparent organisation for collective management of copyright and related rights, recognised for services provided both to domestic and foreign music creators.

In order to improve operational management, and provide relaible partnership and better quality service to our clients, we has implemented a Quality Management System  which meets the requirements of the ISO 9001:2015 standard and Information Security Management System in accordance with the ISO/IEC 27001/2013 standard. The Integrated Management System is based on the principles of focus and commitment to the users, security, confidentiality, integrity, and availability of the Sokoj’s entire information assets, process oriented, systematic management approach, providing business continuity, and continuous improvement.

The policy applies to all business processes related to documents, information or their processing, where information technology is used to:

The users’ applications, including their personal data, are in focus of protection in terms of information security, and are interpreted and represented as part of contractual obligations and internal documents of Sokoj. Security risks related to information resources arising out and in connection to operating activities are assessed preventively and on a regular basis and thus managed as such. Accountable decisions are made during risk management regarding acceptance, limitation, reduction, and transfer of impact of security risks.

In order to accomplish all of the aforementioned, we:

In order to safeguard information security, incident management, quality management, and compliance with standards, our director, employees, and external associates must be always well aware of their obligations and responsibilities as defined in their job description or contracts, and must provide the conditions for this Policy to be fully implemented.

In Belgrade, on 2 October 2020

                                                                                                                                                      Dejan Manojlović, Director