Digitalization, Cyber Security, Data Privacy and Information Security

Atlas Professionals is continuously developing, improving and implementing processes on a Group-wide basis, supported by common and tailor-made IT systems with embedded key control frameworks. This ensures the integrity of information processing in supporting and ensuring compliance of daily recruitment and placement processes as well as management of day-to-day financial transactions, financial and operational management reporting.

Atlas Professionals invests in and develops IT based tools to ensure that we remain at the forefront of developments in our market, facilitating quick and easy communication in a fast-paced and highly competitive landscape. We have also further developed our online Professionals portal “MyAtlas” to enhance its functionality.

As a holder of data, Atlas Professionals takes information security very seriously, with the following key policies in place to protect this data:

• Privacy Policy,

• Data Leak Procedure,

• Cyber Security Policy,

• Strategic Cyber Security Policy.

Information Security

Atlas Professionals ensures information security in a number of ways:

• Performing regular phishing simulation testing, with a follow up training program,

• IT & Cyber Security training incorporated into online learning platform (GoodHabitz),

• IT Due diligence and annual review of services conducted on (potential) vendors,

• Security baseline assessment conducted by external partner (Ecko), identifying potential improvement areas,

• Bi-Annual audits performed (by PwC) who review control procedures such as Segregation of duties, user impersonation checks, change management, user access rights review,

• In addition to the Data Leak Procedure a new Incident Response Plan is under development,

• All records are maintained in accordance with our Integrated Management System, and in accordance with any prevailing legislation. Inactive users are removed from the system, and Professionals may request removal from the system,

• Stakeholders (Professionals) are required to read and accept Atlas’ Privacy Policy at the moment they create their account in the system (MyAtlas portal). The policy details the type of personal data Atlas Professionals is requesting, how we collect it, for what purposes we hold it; what to do in case the data needs to be corrected or removed as well as what is the Data Leak Procedure,

• Atlas Professionals ensures that business critical IT systems suppliers are ISO 27001 certified.