Security & Compliance
Your Data. Our Priority.
At Digiratina, we ensure the highest level of data privacy and information security through globally recognized standards and compliance practices.
Certified
ISMS (ISO/IEC 27001:2022)
Information Security Management System
PIMS (ISO/IEC 27701:2019)
Privacy Information Management System
Compliant
EU: GDPR
General Data Protection Regulation
PDPA Sri Lanka
Personal Data Protection Act
Our Security Policies
At Digiratina, we are committed to implementing and maintaining robust security frameworks that protect your data and inspire unwavering trust. Our approach is guided by transparency, accountability, and globally recognized compliance standards.
Data Encryption
We use industry-standard encryption protocols to protect all data, both in transit and at rest, keeping sensitive information secure and inaccessible to unauthorized parties.
Access Control
Strict access control policies follow the principle of least privilege. Only authorized personnel can access sensitive data, with permissions reviewed regularly to maintain maximum security.
Regular Audits
Our systems undergo internal and external audits to proactively identify vulnerabilities and ensure continuous compliance with international standards.
Incident Management
We maintain a well-defined incident management plan to detect, respond to, and mitigate any security incidents promptly, minimizing risks and ensuring business continuity.
Data Privacy & Protection
We are committed to protecting personal data in line with privacy regulations. Personal information is collected, processed, and stored with strict safeguards to ensure confidentiality, integrity, and lawful use.
Third-Party Data Protection
We ensure that any third-party partners handling personal data adhere to strict data protection requirements and maintain appropriate security and privacy standards.
Lawful Processing & Transparency
All personal data is processed based on clear legal grounds, such as consent or contractual necessity. We maintain transparency by informing individuals about how their data is used through clear and accessible privacy notices.
Data Subject Rights
We respect and uphold the rights of individuals, including the right to access, correct, or delete their personal data. Processes are in place to respond to such requests promptly and in compliance with applicable regulations.
Frequently Asked Questions
Which certifications does Digiratina hold?
We are certified in:
- ISMS (ISO/IEC 27001:2022) – Information Security Management System
- PIMS (ISO/IEC 27701:2019) – Privacy Information Management System
These certifications demonstrate our commitment to maintaining robust information security and privacy management practices.
What compliance regulations does Digiratina follow?
- GDPR (General Data Protection Regulation)
- PDPA Sri Lanka (Personal Data Protection Act)
This ensures that all personal and sensitive data handled within our systems meet global and local compliance standards.
How does Digiratina protect client and user data?
How often are security audits and reviews conducted?
How does Digiratina ensure secure collaboration with clients and partners?
Can Digiratina help clients achieve compliance for their own systems?
Who can I contact for questions about security or data protection?
For any inquiries related to information security or data privacy, you can reach out to:
- Information Security Officer: iso@digiratina.com
- Data Protection Officer: dpo@digiratina.com