EDP Distribuição developed a certification and compliance program based on the International Standard ISO27001: 2013, having implemented an Information Security Management System (ISMS) that systematizes, develops and consolidates best practices in the area of cybersecurity and risk management. This represents a key contribution to ensure compliance with the Network and Information Security (NIS) Directive and the General Data Protection Regulation (GDPR): The company is responsible for protecting the confidentiality, integrity and availability of its information infrastructure, and this program is an essential milestone to guarantee security on its digital journey.