Our data governance processes and policies ensure our data drives positive change without compromising privacy.
At smrtr our first consideration is the law, which defines personal information as “information or an opinion about an identified individual, or an individual who is reasonably identifiable”. We have three key factors to consider when managing and using personal information:
We address the balance of maintaining privacy and maximising data value by aggregating our data into micro-segments so that we cannot identify specific individuals. This means we can derive insights and create audiences without passing through individual-level data.
To further demonstrate our commitment to security management, smrtr holds ISO 27001:2013 Certification, the internationally recognised Information Security Management Standard (ISMS).
ISO 27001 is designed to give an organisation a framework that protects information assets and ensures business continuity in a landscape filled with information security threats.
ISO 27001 preserves the confidentiality, integrity and availability of information by applying risk management processes to adequately manage threats. The broad scope of the ISMS ensures that all aspects of smrtr’s information technology operations are taken into consideration to address information security risks – big and small.