Information Security Policy
At TeKnowledge, we are committed to maintaining the confidentiality, integrity, and availability of information assets through a robust Information Security Management System (ISMS) based on the ISO/IEC 27001:2022 standard. In addition, we have extended our ISMS to include privacy management by achieving ISO/IEC 27701:2019 certification. This international standard, as an extension to ISO/IEC 27001, demonstrates our ongoing commitment to the effective management of both information security and personal data privacy in accordance with global best practices.
Our Information Security and Privacy practices encompass a comprehensive set of policies, processes, and controls designed to safeguard information and ensure compliance with legal, regulatory, and client contractual obligations.
Core Principles of Information Security and Privacy
1. Confidentiality
Ensuring that information is accessible only to authorized personnel and preventing unauthorized access or disclosure.
2. Integrity
Maintaining the accuracy, completeness, and consistency of data throughout its lifecycle.
3. Availability
Guaranteeing that information and systems are accessible to authorized users when needed, minimizing downtime and disruptions.
4. Privacy
Safeguarding personal data throughout its lifecycle in compliance with data protection laws and regulatory requirements.
1. Confidentiality
Ensuring that information is accessible only to authorized personnel and preventing unauthorized access or disclosure.
2. Integrity
Maintaining the accuracy, completeness, and consistency of data throughout its lifecycle.
3. Availability
Guaranteeing that information and systems are accessible to authorized users when needed, minimizing downtime and disruptions.
4. Privacy
Safeguarding personal data throughout its lifecycle in compliance with data protection laws and regulatory requirements.
These principles are further supported by measures such as:
Authenticity
Verifying the genuineness of users and data sources.
Accountability
Maintaining logs and audit trails to trace actions and decisions.
Non-repudiation
Ensuring that actions and communications cannot be denied.
Reliability
Guaranteeing consistent and accurate performance of information systems.
Information Security and Privacy Practices
Policy Framework
TeKnowledge has implemented a comprehensive set of policies, including the Corporate Information Security Policy, Acceptable Use Policy, Mobile Device Policy, Client Secure Area Policy, and Data Privacy Policy, all aligned with ISO/IEC 27001:2022 and ISO/IEC 27701:2019 requirements.
Employee Training
Regular Information Security and Data Privacy Awareness training ensures that employees understand their roles and responsibilities in safeguarding information and protecting personal data.
Secure Operations
Measures include Endpoint Protection, Secure Hardening, Regular Audits, and Incident Response Planning.
Third-Party Compliance
All Third Parties and Contractors are required to adhere to stringent security and privacy standards, as outlined in our agreements.
Policy
Framework
TeKnowledge has implemented a comprehensive set of policies, including the Corporate Information Security Policy, Acceptable Use Policy, Mobile Device Policy, Client Secure Area Policy, and Data Privacy Policy, all aligned with ISO/IEC 27001:2022 and ISO/IEC 27701:2019 requirements.
Employee
Training
Regular Information Security and Data Privacy Awareness training ensures that employees understand their roles and responsibilities in safeguarding information and protecting personal data.
Secure
Operations
Measures include Endpoint Protection, Secure Hardening, Regular Audits, and Incident Response Planning.
Third-Party Compliance
All Third Parties and Contractors are required to adhere to stringent security and privacy standards, as outlined in our agreements.
Physical and Environmental Security
TeKnowledge enforces stringent Physical and Environmental security measures to protect its infrastructure.
Data Protection Practices
As part of our adherence to ISO/IEC 27001:2022 and ISO/IEC 27701:2019, TeKnowledge has implemented advanced data protection and privacy practices to ensure the secure handling, processing, and safeguarding of information, including personal data.
Contact Information
For further inquiries, please contact:
Certification
TeKnowledge proudly maintains ISO/IEC 27001:2022 and ISO/IEC 27701:2019 certifications, demonstrating our ongoing commitment to excellence in information security and privacy management.
Together, these practices reinforce our dedication to protecting information assets, building trust with clients, and supporting the secure operation of our business.
