To consistently meeting customer requirements and enhancing their satisfaction. It is aligned with an organization's purpose and strategic direction for:

• the ability to consistently provide products and services that meet customer and applicable statutory and regulatory requirements;
• facilitating opportunities to enhance customer satisfaction;
• addressing risks and opportunities associated with its context and objectives;
• the ability to demonstrate conformity to specified quality management system requirements.

To protect the environment and respond to changing environmental conditions in balance with socio-economic needs by:

• protecting the environment by preventing or mitigating adverse environmental impacts
• mitigating the potential adverse effect of environmental conditions on the organization;
• assisting the organization in the fulfilment of compliance obligations;
• enhancing environmental performance;
• controlling or influencing the way the organization's products and services are designed, manufactured, distributed, consumed and disposed by using a life cycle perspective that can prevent environmental impacts from being unintentionally shifted elsewhere within the life cycle;
• achieving financial and operational benefits that can result from implementing environmentally sound alternatives that strengthen the organization’s market position;
• communicating environmental information to relevant interested parties.

To develop business continuity appropriate to the amount and type of impact that the organization may or may not accept following a disruption by:

• understanding the organization’s needs and the necessity for establishing business continuity policies and objectives;
• operating and maintaining processes, capabilities and response structures for ensuring the organization will survive disruptions;
• monitoring and reviewing the performance and effectiveness of the BCMS;
• continual improvement based on qualitative and quantitative measures.

To preserve the confidentiality, integrity and availability of information by applying a risk management process and gives confidence to interested parties that risks are adequately managed

• provide requirements for establishing, implementing, maintaining and continually improving an information security management system;
• part of and integrated with the organization’s processes and overall management structure;
• information security is considered in the design of processes, information systems, and controls;
• scaled in accordance with the needs of the organization