Our commitment to information security

Akuerò ensures the correct Information Security Management, applying the best practices of Information Security to protect its infrastructures and to mitigate IT risk.

We have drawn up a detailed document with the aim of describing, for the benefit of anyone who may be interested, the criteria used to manage the IT risk associated with the Akuerò Platforms which provide digital services to automate IT processes in the loyalty marketing sector.

The content of this document is organized to provide a detailed understanding of which methods are used and which security controls are implemented in order to protect the information processed through the software applications of the Akuerò Platforms, with particular regard to personal data subject to the rules contained in the EU Regulation 2016/679 (hereinafter "GDPR").

 

Cyberction © and Framework for Cybersecurity and Data Protection

 Akuerò has its own Information Security Management System in order to act consciously and obtain objective parameters to measure and mitigate IT risk.

To better act on the growth of awareness, the original Cyberction © aimed at providing an operational method for the creation and use of information security management systems that make use of the taxonomy of the National Framework for Cybersecurity and Data Protection (Framework 2.0). This methodology is therefore natively aimed at linking the world of IT Security with that of Data Protection.

 

ISO/IEC 27001

The information reference is ISO/IEC 27001, the individual activities envisaged by the Akuerò System are usually mapped by the ISO/IEC 27001 Security Control of the information reference associated with the sub-category of the Framework 2.0. The Cybersecurity activities carried out on the Akuerò Platforms to manage cyber risk are thus mapped to the ISO/IEC 27001 standard and therefore compliant with it.

 

 

DPO

We have appointed a Data Protection Officer (DPO).