As from April 2021, Secutel Technologies is ISO 27001 Certified.
ISO 27001 is the international standard which is recognised globally for managing risks to the security of information held. Certification to ISO 27001 allows us to prove to our clients and other stakeholders that we are managing the security of information. ISO 27001:2013 (the current version of ISO 27001) provides a set of standardised requirements for an Information Security Management System (ISMS). The standard adopts a process based approach for establishing, implementing, operating, monitoring, maintaining, and improving our ISMS.
INFORMATION SECURITY POLICY
Secutel Technologies (Pty) Ltd places great emphasis on the need for the strictest privacy and confidentiality in respect of client data. This applies to manual and computer records and telephone conversations. The organisation will strive to improve its confidentiality processes in respect to client data.
Secutel has adopted an ISO 27001 Information Security Management System (ISMS) and ISO 27701 Privacy Information Management (PIMS) as tools to implement a formal system for protecting the privacy, confidentiality, integrity, and availability (CIA) of information.
Secutel commits to:
- continually improve its ISMS and PIMS, to comply with applicable legal and other obligations to which it subscribes and satisfy applicable expectations from interested parties and commits to performing to high standards;
- meeting all the Information Security and Privacy requirements from our customers and the provision of the necessary resources to achieve this; and
- encouraging improvements by engaging with our employees.
Secutel will control or restrict access so that only authorised individuals can view sensitive information. Access to client information is limited only to who have a specific need to see or use that information.
Information will not be made available to outside parties without the written consent of the information owners.
Secutel will continually review this policy and its information security and privacy performance to ensure it continually improves over time.
Objectives relating to information security and privacy performance will be set annually and reviewed by the executive management.
This policy is available to all our customers and relevant interested parties and our employees are made aware of our commitment and the contents of this policy.
This executive management is responsible for reviewing this policy in-line with the organization’s document management policy.
Carel Brink CEO