OUR SERVICES
WE HELP YOU STAY COMPLIANT TO NATIONAL & INTERNATIONAL STANDARDS
- PERSONAL DATA PROTECTION ACT
- GDPR
- HIPAA
- ISO 27001:2022
- ISO 27701:2019
- PCI DSS
INFORMATION SECURITY CONSULTING SERVICES
ISO 27001:2022 Information Security
ISO/IEC 27000 family - Information Security Management Systems
The ISO/IEC 27000 family of standards helps organizations keep information assets secure. Using this family of standards will help your organization manage the security of assets such as financial information, intellectual property, employee details or information entrusted to you by third parties.
ISO/IEC 27001 is the best-known standard in the family providing requirements for an information security management system (ISMS).
PERSONAL DATA PROTECTION
Organisation which process data of living individuals within territory of India or foreign companies doing business in India are mandated to adhere to the Personal Data Protection regulations. This involves a host of controls to be implemented within the organisation.
We are trained and experienced in Implementing Personal Data Protection measures which includes but not limited to
- Data discovery
- Data Classification
- Impact Assessments
- Implement Controls to endure protection from loss, leakage
- Privacy Policy and a host of other Policies and Procedures
- Internal & External Audits
- Certification Services
DATA PROTECTION OFFICER SERVICES
Experienced and Senior DPOs are expensive as fulltime resources. Law gives provision for contract engagement for DPO rather than a full time employee.
ISAAA has excellent trained resources as ‘Data Protection Officers’, taking on the responsibility while keeping you in control.
- Takes Accountability of the DPO Role as per the requirements of Law
- Inform, advise, and issue recommendations to management regarding compliance with Privacy Data Protection laws including GDPR, and Company policies and guidelines with respect to data protection & information security.
- Serve in a leadership role and provide advice and guidance as a privacy consultant to management.
- Represent the organization in dealing with data Protection Commission Officers, including complaints and data breach notifications.
GENERAL DATA PROTECTION REGULATION (GDPR)
Who is GDPR this for?
1) Those companies that handle personal data of EU Nationals as a core business activity, such an BPOs wrking for EU based companes directlyor indirectly or companies who employs EU Nationals.
2) Companies that deal mainly with personal data of their employees or have lists of clients and customers based out of EU.
3) eCommerce companies that store personal data of EU Nationals as a part of going online businesses.
BUSINESS CONTINUITY MANAGEMENT
We Design and implemented Business Continuity Plans for Organizations.
Ensure business operations continue smoothly in the event of any disruption to business like natural calamities, fire, virus, or even unavailability of office business premises or even non-availability of key personnel.