ISO/IEC 27001:2022


1.  Information security is critical to maintaining the reputation of a company for its ongoing success and viability.

2.  Our core security principle is to ensure the confidentiality, integrity, and availability of the information entrusted to us by our customers and business partners, as well as our own information.

3.  As such, we aim to provide assurance to internal and external stakeholders of the security and privacy of their information entrusted to IGO Solutions, whether in storage, processing or transmission.

4.  To realise this principle, we are committed to the following security objectives:
      ◉   To ensure that there is Nil unauthorized access either by internal or external Sources.
      ◉   To reinforce the security in the Human Resource processes starting from Pre-employment, through the employment, and after termination
      ◉   To test Business continuity and disaster recovery plans at least once in a year.
      ◉   To maintain 100% Information security awareness among all staff and relevant interested parties.
      ◉   To check Code review and security of source code in the code repository
      ◉   To ensure there is Nil disciplinary action against employees and relevant interested parties for not being compliant to the ISMS environment.
      ◉   To report, investigate and close all (100%) breaches of information security, actual or suspected, in HR, Admin, IT & all other prevailing department by the ISSC.
      ◉   To Maintain Nil applicable regulatory and statutory requirements that are were not met.
      ◉   To Conduct VAPT Assessment at least once in a year.

5.  This policy applies to:
      ◉   All full time, part-time, casual, or contracted IGO Solutiions personnel
      ◉   All suppliers providing services to IGO Solutions
      ◉   Any other third parties with a valid reason to access information held by IGO Solutions
      ◉   ISO27001-2022-Certificate

6.  IGO Solutions has achieved ISO27001:2022 certification, recognising its commitment to providing customers with the highest level of information security management. Following an extensive audit process, the certification was issued by TÜV SÜD, an accredited, third-party certification body providing auditing and certification of international management system standards

7.  “This certification underscores our commitment to ensuring that customer and partner data is treated with the utmost respect in terms of security and privacy, and our ongoing dedication to best practices in the area of information security management."

8.  ISO 27001 is the most widely recognised international standard outlining best practices for information security management systems. The standard was published in October 2022 by the International Organisation for Standardisation (ISO) and the International Electrotechnical Commission (IEC) and ensures that organisations have established methodologies and a framework of business and IT processes to help identify, manage, and reduce risks. More information about this standard can be found on https://www.iso.org/standard/27001

9.  IGO Solution's certification details are publicly available on https://www.tuvsud.com/en-in/resource/certificate-finder/nabcb-and-saas-accreditation