Last updated: January 27, 2023

PocketBooks (Aspada Technology and Integrated Support Services LLP) Inc. and its affiliates, collectively maintains appropriate security safeguards designed to protect your information from loss, misuse, and unauthorized access or disclosure, and to ensure its confidentiality, integrity and availability. Our security program accounts for both the sensitivity of the information we process and the current state of technology. The following sets out our security practices with respect to your information.

Written Information Security Program

PocketBooks maintains an information security program for security, availability, processing integrity, confidentiality and privacy.

Personnel Practices

PocketBooks / ATISS conducts background checks on employees appropriate for their responsibilities (with more extensive background checks required for key employees that have elevated privileges), provides ongoing privacy and security training to its staff, and requires employees to read and sign confidentiality and non-disclosure agreements as conditions of their employment.

Confidentiality & Access Controls

PocketBooks / ATISS employees are subject to written confidentiality obligations and are prohibited from accessing customer data unless absolutely necessary. Our security policies include limiting access to systems only where individual roles require it (least privileged).

Encryption

All customer data processed by PocketBooks / ATISS infrastructure is encrypted in transit using the best technology.

Availability

Our infrastructure systems are fault tolerant and our operations team works continuously to make PocketBooks / ATISS’s platform a highly available service you can rely on.

Network Protection

We protect the security of our network through the use of software and tools, such as firewalls and load balancers, and we implement multi-factor authentication for all servers across our various environments, including production.

Logging and Monitoring

Our production environment implements a centralized logging and monitoring system to track information pertaining to security, monitoring, availability, access and other metrics about our services.

Product Security & Privacy by Design

New features, functionality and design changes at PocketBooks / ATISS go through a security and privacy review process by our teams. Code is tested and is manually peer-reviewed prior to being deployed to production.

Service Provider Relationships

All third-party services that could potentially impact the security of our information or customer data are reviewed by our platform team. PocketBooks / ATISS requires all service providers to agree not to retain, use or disclose personal information for any purpose other than for the specific purpose of performing the services specified in their agreement with PocketBooks

© PocketBooks A unit of ATISS., 2024.