Home
Home/Information Security Policy

Information Security Policy

At iSON Secure, we are committed to protecting the confidentiality, integrity, and availability of information across our systems, platforms, applications, and operational processes.

We implement appropriate administrative, technical, and organisational safeguards to protect information from unauthorized access, disclosure, alteration, misuse, disruption, or loss.

Our information security practices are aligned with industry-recognised standards and best practices, including:

  • ISO/IEC 27001 Information Security Management principles
  • ISO/IEC 27701 Privacy Information Management principles
  • Applicable cybersecurity, privacy, and data protection requirements

Our Security Commitment

iSON Secure maintains information security controls designed to:

  • Protect customer, member, and organisational information
  • Secure digital platforms, applications, and communication channels
  • Prevent unauthorized access to systems and sensitive data
  • Reduce cybersecurity and operational risks
  • Support business continuity and operational resilience
  • Promote secure handling and processing of information

Security Measures

Our security framework may include:

  • Access control and user authentication mechanisms
  • Role-based access management
  • Secure hosting and infrastructure controls
  • Encryption of sensitive information where applicable
  • Network security and firewall protection
  • System monitoring and audit logging
  • Backup and recovery procedures
  • Vulnerability management and periodic security reviews

Access to sensitive information is restricted to authorised personnel only.

Information Handling

All information processed through our systems is managed in accordance with defined security and confidentiality practices.

We apply reasonable safeguards to protect:

  • Personal information
  • Healthcare and insurance-related information where applicable
  • Operational and business data
  • Digital communication and transaction records

Third-Party Security

Where third-party vendors or service providers support our operations, reasonable steps are taken to ensure they maintain appropriate confidentiality, privacy, and information security practices.

Security Awareness

Employees and authorised personnel are expected to follow approved security procedures and participate in periodic security awareness and compliance activities.

Incident Management

iSON Secure maintains processes for identifying, reporting, investigating, and responding to information security incidents and operational risks.

Appropriate corrective and preventive actions may be implemented where necessary.

Continuous Improvement

We continuously review and enhance our security practices to address evolving technology, operational requirements, cybersecurity threats, and regulatory expectations.

Contact Us

For any questions related to information security or data protection practices, please contact us through the official communication channels available on our website.