Home arrow Services arrow Security Policies
Security Policies   Print E-mail

As a provider of outsourcing services to enterprise organizations in a range of vertical industries, we understand the importance of safeguarding customers’ information. Osellus is committed to maintaining and enforcing security policies that meet each customer's specific requirements, including the following:


Physical Security

  • Photo ID cards with easy-to-identify bands are issued to all employees.
  • Visitors are provided with separate ID cards. They are accompanied by internal staff during their visit to the office premises.
  • Presence of security guards and 24x7 surveillance system.
  • We have fire protection and fire extinguishers available at a comfortable distance.

Data Access Security

  • Security Firewalls are installed to prevent unauthorized access to the network.
  • Group policies in place for accessing PCs and workstations for authorized access.
  • Access to important files and directories is given only to specific personnel.
  • Monthly backups are stored at an off-site location and removable backups are kept safe with logs duly maintained. Daily backups are stored in fire-proof safe.
  • External security audits are enforced to assess any breach with multi level security management in control.
  • By default, all ports (USB, Serial, Parallel) are disabled on PCs. Enabling of the required ports is done only on specific requests by the client.
  • Physical security ensures no CDs, Pen-drives, movable media goes in and out of the facility without written permission from the management.
  • The company has systems in place to ensure that the access of an employee who has left the company is totally terminated or denied by withdrawing all relevant access authorizations and invalidating access to the computer system of the company.

Network Security

  • Software defined secure tunnels through the internet
  • Only client authorized personnel is allowed to access the VNC/VLAN/VPN. This setup prevents others from accessing the project information
  • Real-time Anti-Virus and SPAM protection for desktops and servers
  • Annual maintenance and scheduled preventive maintenance in place for critical assets
  • Adequate spares are available for all critical infrastructure, thereby minimizing downtime
  • Wireless LAN in the office is also security protected

Non-Disclosure Agreements (NDA’s) with Client

To ensure the security and confidentiality of information, a Non-Disclosure Agreement (NDA) is executed with each client and all private information is respected.

 

Non-Disclosure Agreements (NDAs) with Employees

  • At the time of joining, all employees are required to sign a proprietary information and inventions agreement. Individual NDAs are also signed with every employee on joining.  Any violation of this agreement will result in termination and prosecution of the individual.
  • Employees cannot disclose any proprietary information directly or indirectly to anyone outside the project team or company, or use, copy, publish, summarize or remove such information from the company premises.
  • Employees cannot use any unfair competitive practices upon termination of employment or engage in any business during employment.
  • Any confidential information received from third parties and clients are held in strictest confidence and employees are not allowed to disclose or use it, except as necessary to perform his/her obligations as is consistent with third parties.
  • Any "invention ideas" and relevant records has to be disclosed to the company and all information and records pertaining to any idea, process, trademark, service mark, invention, technology, computer program, original work of authorship, design, formula, discovery, patent, or copyright conceived or developed has to be promptly disclosed to the company.

Project-related IP protection

  • Dedicated resources are made available for all projects. This prevents unauthorized usage of resources and protects all proprietary information of our clients.
  • We have a strong ethical framework that forbids exchange of IP between projects.

Confidential Document Control

  • Every copy of confidential document is separately tracked and is distributed to an Osellus employee on a 'need-to-know basis' only.
  • All copies of customers’ confidential documents are regularly accounted for, and deleted when usage needs have expired.
  • All such confidential documents are returned and disposed of by the relevant customer/client.

Other Security Measures

  • We perform background checks on each individual we hire. This includes reference check, peer-references, verification of academic records, police record verification, home/permanent address verification on each employee of the company. Since bank accounts are opened through our company that provides us with an extra layer of cross verification.
 
...Back

Further Information

Download

Services Information
© Copyright 2007-2009, Osellus Incorporated.
Legal NoticePrivacy Statement