Our Commitment to Information Security

Akuerò ensures the correct Management of Information Security, applying the best practices of Information Security to protect its infrastructures and to mitigate the IT risk.

We have drawn up a detailed document with the aim of describing, for the benefit of anyone who may be interested, the criteria used to manage the IT risk associated with the Akuerò platforms that provide digital services to automate information processes in the loyalty marketing sector.

The content of this document is organized to make it clear in detail which methods are used and which security controls are implemented in order to protect the information processed through the software applications of the Akuerò Platforms, with particular regard to personal data subject to the rules contained in the EU Regulation 2016/679 (hereinafter "GDPR").

 

Cyberction © and Framework for Cybersecurity and Data Protection

 Akuerò has its own Information Security Management System in order to act consciously and obtain objective parameters to measure and mitigate the IT risk.

To better act on the growth of awareness, the original Cyberction © aimed at providing an operational method for the creation and use of information security management systems that make use of the taxonomy of the National Framework for Cybersecurity and the Data Protection (Framework 2.0). This methodology is therefore natively aimed at linking the world of IT Security with that of Data Protection.

 

ISO / IEC 27001

The information reference is ISO / IEC 27001, the individual activities envisaged by the Akuerò System are normally mapped by the ISO / IEC 27001 security control of the information reference associated with the sub-category of Framework 2.0. Cybersecurity activities carried out on Akuerò Platforms to manage cyber risk are thus mapped to the ISO / IEC 27001 standard and therefore compliant with it.

 

 

DPO

We have appointed a Data Protection Officer (DPO).