The Integrated Management System Policy

The strategic aim of Risk Analysis Consultants (Company) in accordance with the vision and mission of the company's continued customer satisfaction, with regard to the requirements arising from the specifics of each particular customer, based on high-level knowledge and experience of consultants and keeping them on top world level. The criteria is to continuously improve the efficiency and quality of consulting services, whether provided in the form of projects or partner support, and improving the ability to react promptly to market developments and changing environments. During the execution of all activities of the company both in relation to the clients, partners or business process the goals to minimize the risk of security assets and interests of the company particularly in the field of information assets. To meet those objectives plans, establishes, maintains and controls the company's integrated management system (IMS), covering the areas of quality and security information.

Policy of quality management system
To meet the declared commitment of the Company in the field of quality assurance, the company introduces appropriate controls to ensure fulfilment of the client´s expectations in the use of services and solutions. Satisfaction and loyalty of our clients we consider of the basis for the successful development of our business, therefore we provide services and solutions that help meet the needs of our clients. We foster an atmosphere of open communication, fully utilize and develop the creative potential of our employees, through which we achieve the high quality of our services and solutions. Management and monitoring key processes of the company, we ensure that our services and solutions are consistently maintaining the high quality in which our clients expect. We concentrate our efforts, especially where we can impact the quality of our services and solutions, thus we prevent inefficient cost increases as well as loss of customer satisfaction. We actively seek opportunities for improvement and effectively use them, in which the changes are reflected in our services and solutions, thereby enhancing their value. The fulfilment of the financial aspects of our work is to ensure effective functioning of the company's prospects as well as developing and social needs of their workers.

Policy of Information Security Management System
The main goal of the company is to include ensuring information security through adequate and appropriate controls, which will protect the information assets to provide adequate assurance to our customers as well as our partners. This objective is met by building, establishing, operating, controlling, maintaining and constantly improving a documented Information Security Management System within the context of business activities and risk management. The basic sources of information security management within the company are legislation, standards, norms and recommendations, which must be in the process of information security management respected. The term information security is understood the process of ensuring the protection of information at the appropriate level in terms of confidentiality, integrity and availability. To ensure our business objectives and activities, or implementation of legislative requirements, we create process and maintain information of various kinds, which is required to ensure their safety. Ensuring the security of information related with the Forensics Institute is governed by other internal regulations of the company. Information falling within the scope of the policy on classified data is protected in accordance to the decrees and regulations as well as the responsible state authority approved security documentation of the company. This policy of integrated management system covers the main business activities and services beyond those related to the Forensics Institute of the company, which is governed by other internal regulations of the company and except those which are involved in the processing of information complying to the policy on classified data, which protected in accordance with to the laws, regulations, rules, and the responsible state authority approved security documentation of the company.

Prague, November 7, 2006

Michal Žipaj
CEO