Information is an asset that, like other important business assets, is essential to an organization’s business and needs to be suitably protected.

Information security is the protection of information from a wide range of threats in order to ensure business continuity, minimize business risk and maximize return on both investments and business opportunities.

Sopra India is deeply committed to Information Security both for itself and its customers. It achieves this by implementing a suitable set of controls, including policies, processes, procedures, organizational structures and software and hardware functions.

These controls are established, implemented, monitored, reviewed and improved, where necessary, to ensure that the specific security and business objectives of the organization and our customers are met.

For identifying and implementing appropriate control Sopra India is following ISO 27001 standards and ISO 17799 guidelines.

Sopra India has been certified for conformance to the Information Security Management System standard ISO/IEC 27001:2005 on April 11,2007 for Management of design, development and testing of Application & System software and support services. The audit of Sopra India Information Security practices was done by DNV (Det Norske Veritas). This certification holds valid until April11, 2010.