SERVICE MANAGEMENT POLICY

1. IT SERVICE MANAGEMENT POLICY

The Company has always shown its interest in the formalization of processes, both at a technical and management level, since its creation and has progressively incorporated good practices in Service Management with the adoption of the different aspects of the ITIL methodology. The organization of the company as a set of services provides a vision of technology based on the needs of customers, both internal and external, and on quality and service level commitments. This approach breaks with the usual practice of organizing IT services as independent units structured in a hierarchical manner. Therefore, its implementation can generate rejection in the organization and must be carefully planned to ensure its success. As a first step for the correct implementation of IT Service Management in the company, an IT Service Management policy has been defined, based fundamentally on the following points:

All activities carried out by myCloudDoor Solutions, S.L. (hereinafter myCloudDoor) for its customers must be included in the IT services defined in the scope.
The complete list of services must be kept up to date in a service map that must be public and known by all members of the organization. It must also be available to the customers of the services that do not belong to the organization and to the suppliers that in one way or another participate in the provision of the services.
A Service Management System (hereinafter referred to as SGS) based on ITIL practices is defined.
It is myCloudDoor's vocation to certify the services included in the catalog with the ISO 20000 standard as a measure to ratify their correct definition and implementation.
There is a "SGS05 - myCD - Service Management Plan" where all the characteristics inherent to the SGS are defined. This document is public and accessible to all members of the organization.
There is a document "SGS01 - myCD - Roles and Responsibilities", which defines the roles and responsibilities related to the performance of IT Service Management, from the General Management to the process and service managers.
Professionalize and align operations with the best market practices, and improve service productivity.

2. IT SERVICE MANAGEMENT POLICY

The first objective of service management in myCloudDoor is to improve the satisfaction of service users. It is understood that with the adoption of ITIL practices and the certification of these under ISO 20000, the attention to users and the provision of services will improve significantly. A second objective is to apply the experience and knowledge to the services that myCloudDoor designs and offers to its customers. It is understood that if myCloudDoor certifies the services it offers under a regularized service catalog, it will be able to demonstrate its solvency in the technical implementation of the services and, in general, reorient its relationship with the client based on well-defined, uniform services, and with guaranteed Quality of Service commitments, orienting offers and solutions towards the provision of the service. These objectives are set out in the Service Management Plan. The benefits obtained with the implementation of the Service Management policy are as follows:

Align IT services to business needs.
Improve service provisioning and customer and user service.
To provide an added value of confidence, improving its image with respect to other companies and becoming a decision factor against the competition.
To increase customer satisfaction with the services received from The Company.

2.1. Service Management Plan

There is a document called "SGS05 - myCD - Service Management Plan" which is revised annually. It defines the scope, objectives, requirements, processes, etc. of service management within the scope of ISO 20000 certification. The Service Management Plan defines the following phases:

SGS Planning: includes budget and funding allocation, assignment of roles and responsibilities, process documentation, risk identification and management, team management, equipment and budget management, progress reporting and coordination of Service Management processes.
Monitoring and review: Includes indicator analysis, system audits and system reviews) and continuous improvement.

3. CATALOG OF SERVICES

The SGS scope services are defined in the document "SGS00 - myCD - Service Catalog and Scope", and includes the following:

Managed Cloud Service (Platform)
SAP Managed Cloud Service

The following table summarizes the services under the SGS scope, indicating the processes that are included in the scope for each Service:

PROCESS	SERVICE 1	SERVICE 2	SERVICE 3
Service Level Management	☑	☑	☑
Reporting Management	☑	☑	☑
Continuity and Availability Management	☑	☑	☑
Budget and Financial Management	☑	☑	☑
Capacity Management	☑	☑	☑
Information Security Management	☑	☑	☑
Business Relationship Management	☑	☑	☑
Supplier Management	☑	☑	☑
Incident and Service Request Management	☑	☑	☑
Problem Management	☑	☑	☑
Change Management	☑	☑	☑
Configuration Management	☑	☑	☑
Delivery Management	☑	☑	☑

4. SCOPE

The scope of application of IT Service Management, in its current definition, applies to the services provided by myCloudDoor to its customers within the Platform and SAP Basis area from Madrid, Paseo de la Castellana, 40-8ª, according to the description in the table in the previous section, as well as what is referenced in the "SGS00 - myCD - Services and Scope Catalog".

5. SGS ROLES AND RESPONSIBILITIES

The document "SGS01 - myCD - Roles and Responsibilities" and the associated matrix show those responsible for the roles established by the SGS, as well as those to whom the tasks corresponding to their role are delegated in situations of sick leave, illness or temporary absence of those responsible.

6. SERVICE IMPROVEMENT PLAN

There is a service improvement plan document detailing the annual objectives of the Service Management System, without prejudice to the fact that each SMS process has its own specific annual objectives. The objectives of the service improvement plan are established annually and reviewed quarterly.

name	domain	purpose	expiry	type
thb-revolution-cookiebar	myclouddoor.com	Cookie required to use website options and services	1 month	HTTP
ARRAffinitySameSite	myclouddoor.com	Cookie required to use website options and services	1 day	HTTP
ARRAffinity	myclouddoor.com	ARRAffinity is a cookie used to affinitize a client to an instance of an Azure Web App.	1 day	HTTP
SEARCH_SAMESITE	google.com	SameSite prevents the browser from sending this cookie along with cross-site requests. The main goal is mitigate the risk of cross-origin information leakage. It also provides some protection against cross-site request forgery attacks.	4 months	HTTP
OGPC	google.com	Cookie required to use website options and services	10 days	HTTP
AEC	google.com	Cookie required to use website options and services	12 months	HTTP
__Secure-3PSIDCC	google.com	Cookie required to use website options and services	1 year	HTTP
__Secure-1PSIDCC	google.com	Cookie required to use website options and services	1 year	HTTP
__Secure-1PSID	google.com	Cookie required to use website options and services	2 years	HTTP
__Secure-1PAPISID	google.com	Cookie required to use website options and services	2 years	HTTP

name	domain	purpose	expiry	type
google.com	https://myclouddoor.com	Download certain Google Tools and save certain preferences, for example the number of search results per page or activation of the SafeSearch Filter. Adjusts the ads that appear in Google Search.	2 years	HTTP
SIDCC	google.com	Download certain Google Tools and save certain preferences, for example the number of search results per page or activation of the SafeSearch Filter. Adjusts the ads that appear in Google Search.	2 years	HTTP
SID	google.com	Download certain Google Tools and save certain preferences, for example the number of search results per page or activation of the SafeSearch Filter. Adjusts the ads that appear in Google Search.	2 years	HTTP
OTZ	google.com	Aggregate analysis of website visitors	1 month	HTTP
NID	google.com	This cookies is used to collect website statistics and track conversion rates and Google ad personalisation	7 months	HTTP
HSID	google.com	Download certain Google Tools and save certain preferences, for example the number of search results per page or activation of the SafeSearch Filter. Adjusts the ads that appear in Google Search.	2 years	HTTP
APISID	google.com	Download certain Google Tools and save certain preferences, for example the number of search results per page or activation of the SafeSearch Filter. Adjusts the ads that appear in Google Search.	2 years	HTTP
1P_JAR	google.com	These cookies are set via embedded youtube-videos. They register anonymous statistical data on for example how many times the video is displayed and what settings are used for playback.	1 month	HTTP
IDE	doubleclick.net	This cookie is used for targeting, analyzing and optimisation of ad campaigns in DoubleClick/Google Marketing Suite	1 year	HTTP
DSID	doubleclick.net	This cookie is used for targeting, analyzing and optimisation of ad campaigns in DoubleClick/Google Marketing Suite	9 days	HTTP

name	domain	purpose	expiry	type
SAPISID	google.com	Download certain Google Tools and save certain preferences, for example the number of search results per page or activation of the SafeSearch Filter. Adjusts the ads that appear in Google Search.	2 years	HTTP
_gid	myclouddoor.com	ID used to identify users for 24 hours after last activity	1 day	HTTP
_gat	myclouddoor.com	Used to monitor number of Google Analytics server requests when using Google Tag Manager	1 day	HTTP
_ga	myclouddoor.com	ID used to identify users	2 years	HTTP
__Secure-3PSID	google.com	These cookies are used to deliver more relevant ads for you and your interests.	2 years	HTTP
__Secure-3PAPISID	google.com	This cookies are used to deliver more relevant ads for you and your interests.	2 years	HTTP
UULE	google.com	Cookie associated with the Google Maps service. Allows geolocation from our laboratory in the corresponding section of this website. We adhere to the privacy policy of Google	1 day	HTTP
CONSENT	google.com	Google cookie consent tracker	2 years	HTTP

name	domain	purpose	expiry	type
Azure / Microsoft	account.microsoft.com	https://account.microsoft.com/privacy	12 months	HTTP
DoubleClick/Google Marketing	privacy.google.com	https://privacy.google.com/take-control.html	1 year	HTTP
Google Analytics	privacy.google.com	https://privacy.google.com/take-control.html	1 year	HTTP
Google	privacy.google.com	https://privacy.google.com/take-control.html	1 year	HTTP