Home | Site Map | Guestbook | Contact Us | Search :    



Privacy & Security

With security intrusion and confidentiality breach on the rise, businesses today look for foolproof measures in order to protect crucial corporate data. At HeroITES, we have utmost concern for your business confidentiality and data security, and are totally committed to protecting your privacy. While there is inherent risk in doing business with anyone over a public medium like the Internet, the BPO/call center company has implemented reasonably effective measures to reduce these risks. Our demonstrated ability to manage complex processes and security issues has helped maintain successful, long-term relationships with our clients. We greatly value your continued trust and confidence in HeroITES and devote even greater efforts to deliver better.

Confidentiality & Security Undertakings

HeroITES abides by the following principles which have been adopted as the supreme commandments for ensuring confidentiality and security:
  • All customer information and business transactions are held in strict confidence.
  • We will always obtain information by following a formal code of conduct.
  • We maintain appropriate policies & procedures, and review & update the same, in order to ensure that information in our possession is accurate.
  • We will never disclose information without your permission except in limited circumstances as permitted or required by law. While information may be shared with partners or service providers for serving you better, this will be clearly notified to you.
  • We collect, use or reveal information with the sole purpose of providing superior offshore outsourcing services that will help meet your corporate requirements.
  • You will have access to the information, as per the Service Level Agreement and contract terms and conditions contained therein.
  • We are a BS7799:2-2002 certified company and adhere to stringent information security measures that will keep your data safe and secure.
  • We maintain stringent Information security safeguards to protect your information against loss, theft, unauthorized access, disclosure, copying, use or modification.
  • Whenever we choose to provide certain services, such as data processing, we do so in accordance with applicable law and take all reasonable precautions to ensure that we stick to the best practices used by the industry at large.
Assets Control

At HeroITES, a proper inventory of assets (software, hardware and information assets) is maintained and categorized for security and traceability. Key data and information will be classified and protectively marked, handled and managed as per the sensitivity of the document and in accordance with the HeroITES Information Classification Policy. Controls are applied to reduce the risks of human error, theft, fraud, nuisance or malicious misuse of facilities. Security roles and responsibilities are also included in job descriptions wherever it is appropriate. These may include specific responsibilities regarding the protection of particular assets, or the execution of specific activities such as data protection. Employee security is another crucial factor and those recruited have to undergo a thorough screening/background check, sign confidentiality agreements and undergo security awareness training.

Information Security

At HeroITES, we take pre-emptive measures at every stage to ensure that your data is always in safe hands. We have developed a foolproof Information Security Infrastructure to make sure that effective controls are in place throughout the organization. For details, please click here.

Organizational Security
  • Physical Security
    • We at HeroITES have client-dedicated production floors & equipment and only project-dedicated personnel are given access to the specific area. Mutually exclusive restrictive access to each process enables us to ensure foolproof security.
    • Close Circuit (CCTV) televisions have been placed functionally for round-the-clock monitoring of entire operations floors and all recordings are retained for scanning and scrutiny.
    • Electronic devices like camera phones are strictly barred on the premises.
    • Security personnel are stationed within and around the site at all important locations.
    • Adequate fire fighting equipment is installed at all strategic locations.

  • Security of Third Party Access: Access to HeroITES information processing facilities by third parties is controlled on a need-to-know basis.


  • Identification of Risks from Third Party Access: Third parties who require access to the HeroITES IT/ARE infrastructure are bound by a contract that defines HeroITES security requirements. Prior to being granted any network connectivity, they are required to sign a non-disclosure agreement.


  • Network Isolation and Reconnection: Any computer that is perceived to be placing the integrity of the HeroITES network at risk is disconnected immediately and reconnected only after necessary investigation and approvals.


  • Security Incident Management: Events regarded as “security incidents” are defined and processes are implemented to investigate, control, manage and review such incidents. HeroITES has a structured approach to security incidence reporting. Each security incident is reported to the security officer on duty, following which immediate and appropriate action is taken for speedy resolution of issues and prevention of such occurrences.


Industry Skills & Focus
Technology Edge
Technology Overview
Key Differentiators
Infrastructure
Information Security
Business Continuity Plan and Disaster Recovery
Privacy & Security
Operational Methodologies
Engagement Model
Transition Methodologies
Quality & Continuous Improvement
Facility Tour



Home | About Us | Why Us | HeroITES Services | Hero Heritage | Clients | Work With Us | Knowledge Bank | Newsroom   

Copyright © 2006. HeroITES. All rights reserved. Terms of Use | Privacy Policy