Newsletter

Name
Email
The form has been submitted successfully!
There has been some error while submitting the form. Please verify all form fields again.

ssmtb.com

Schedule A call Now

Information Security Policy

Information Security Policy

1. Purpose

The purpose of this Information Security Policy is to establish guidelines and standards for
protecting the confidentiality, integrity, and availability of information assets handled by SSMTB
Software Services Pvt Ltd.
This policy ensures that all information related to clients, candidates, employees, and business
operations is managed securely and protected from unauthorized access, disclosure, alteration, or
destruction.
SSMTB Software Services Pvt Ltd is committed to maintaining responsible information security
practices aligned with internationally recognized standards and regulatory requirements.

2. Scope

This policy applies to:
• All employees of SSMTB Software Services Pvt Ltd
• Contractors, consultants, and temporary staff
• Business partners and third-party vendors handling company information
• All systems, networks, devices, and data owned or managed by the company
All individuals accessing company information or systems must comply with the security practices
outlined in this policy.

3. Information Security Principles

SSMTB Software Services Pvt Ltd follows the core principles of information security:
Confidentiality – Ensuring that sensitive information is accessible only to authorized individuals.
Integrity – Maintaining accuracy and reliability of information and preventing unauthorized
modifications.
Availability – Ensuring information systems and data are accessible to authorized users when
required.
These principles guide all security practices within the organization.

4. Access Control
Access to company

systems and information is restricted based on job responsibilities and business
needs.
• The company implements:
• controlled user access to systems
• secure login credentials
• password protection for sensitive systems
• restricted access to confidential client or candidate data
Employees must not share login credentials or access information beyond their authorized
responsibilities.

5. Data Protection and Confidentiality

SSMTB Software Services Pvt Ltd is committed to protecting confidential information belonging to
clients, candidates, and business partners

Employees must:
• handle confidential information responsibly
• prevent unauthorized sharing of sensitive data
• use company information only for legitimate business purposes
• maintain confidentiality during and after employment with the company
Any misuse of confidential information is strictly prohibited.

6. Secure Use of Technology

Employees must ensure responsible use of company technology resources including computers,
email systems, and communication tools.
Security measures include:
• use of secure company-approved devices and software
• protection against malware and cybersecurity threats
• regular system updates and antivirus protection
• secure communication of sensitive information
Unauthorized software installation or unsafe system usage is not permitted.

7. Data Storage and Handling

Information must be stored securely and protected against loss or unauthorized access.
The company ensures:
• secure digital storage systems
• controlled sharing of sensitive files
• secure backup practices where necessary
• protection of physical documents containing confidential data
All employees must follow appropriate procedures when dealing with sensitive information.

8. Third-Party Security

SSMTB Software Services Pvt Ltd may work with external vendors or service providers that support
operational activities.
The company ensures that third-party partners handling company information follow appropriate
security practices and confidentiality standards.
Third-party access to systems or data will be granted only where necessary and under controlled
conditions.

9. Incident Reporting

Employees are required to immediately report any suspected information security incidents,
including:
• unauthorized system access
• data breaches or loss of confidential information
• suspicious digital activity or cyber threats
• accidental disclosure of sensitive information
Timely reporting helps the company respond effectively and protect information assets.

10. Employee Responsibilities

All employees and representatives of SSMTB Software Services Pvt Ltd are responsible for
maintaining the security of company information.
Employees must:
• follow all information security procedures
• protect company devices and systems
• maintain confidentiality of business information
• report security concerns promptly
Failure to comply with information security practices may result in disciplinary action.

11. Policy Compliance

Compliance with this Information Security Policy is mandatory for all employees, contractors, and
partners associated with the company.
Violations of this policy may result in disciplinary action, termination of employment or association,
and legal consequences where applicable.

12. Policy Review

This policy will be reviewed periodically to ensure alignment with evolving technology, operational
requirements, and regulatory standards.
Updates may be implemented as necessary to strengthen the company’s information security
framework.

Declaration

SSMTB Software Services Pvt Ltd is committed to maintaining a secure environment for the
protection of information assets and ensuring responsible handling of all data entrusted to the
organization.