Security Policy

SQLearn is a specialized provider of e-learning services, including custom e-learning solutions, such as integrated Learning Management Systems (LMS) development, instructional design and custom e-learning content development, game-based learning and serious games development, 3d training simulations, mobile learning and e-learning consultancy services.

The Information Security Management System has developed and is applied with the objective of:

  • Being the key mechanism for the optimal Company’s organization and operation, determining at the same time the Company’s context
  • Identifying the interested parties that are relevant to the management system and their requirements as they are critical to the security of the information managed by the Company
  • Ensuring the proper information processing management
  • Ensuring the business continuity of the processes that have identified as critical
  • Determining and addressing opportunities and risks associated with the operational environment, thereby enhancing the security level
  • Ensuring a quick, effective and orderly response to information security incidents
  • Ensuring the required level of awareness and understanding for the persons doing work under the Company’s control of issues relating to the information security, networks and infrastructures.

The Company commits to satisfying the requirements (legal and customers’ specifications) that apply to its services, to the information management and to the continual improvement of the Information Security Management System.

The Company applies the system and maintains the certification according to ISO 27001:2013 and has a specific Manual in which the system’s scope is described. 

The Managing Director, by taking into account any technological developments and changes in the legal framework related data protection issues, establishes a series of objectives relating to the performance and security level improvement. The objectives and the actions taken to achieve them, such as the establishment of new objectives, are being examined under the annual management review of the Information Security System. 

The Managing Director invests consistently in technical and operational interventions in order to ensure the continually improvement of the security level.

All the parties involved are required to apply the Information Security Management System.

The Information Security Policy is reviewed annually during the management review, in order to ensure its suitability.

The Information Security Policy is available to any interested party.