Meeting international data security standards
InTouch is one of the only providers of whistleblowing services to have achieved ISO 27001 accreditation, consolidating our position as one of the leading providers in the industry. This accreditation confirms our ability to identify and manage risks to key information and provides clients with the assurance that their data is safe in our hands.
ISO 27001 provides a holistic, risk-based model for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an Information Security Management System. It is the only recognised, auditable International Standard for information security management and enables clients, whistleblowers and stakeholders to have the highest level of confidence, trust and satisfaction with the services we provide.
All data capture is carried out within the EU. We follow the Article 29 DP Act EU Working Party Recommendations and only keep data for 2 months after the organisation has informed us that a case has been closed, or less if specified by the client. After this time we only retain anonymised, ‘skeleton’ information for statistical purposes.
Regular, independent testing is carried out on InTouch’s firewalls to PCI security standards. This ensures that our systems are consistently secure and that no unauthorised access to our data is possible.
Find out more about contacting InTouch
Find out more about our SpeakUp whistleblowing hotline
Find out more about our employee survey service