Because Standards Matter

Sakon prioritizes strong security measures while ensuring compliance with legal and regulatory requirements. Information security is central to our operations and deeply ingrained in our company culture.

Sakon has earned AOTMP Efficiency First® Solution Certification for its Telecom Expense Management Lifecycle and Enterprise Mobility Management services. During the extensive Efficiency First® Vendor Solution Certification Program, the alignment of Sakon’s fixed and mobile telecom management services was evaluated against the Efficiency First® Framework, a disciplined, best practice-driven approach to managing fixed and mobile telecom enterprise environments.

SOC: SOC 1, is an examination report that assesses the design and effectiveness of the internal controls of Sakon as a service organization related to financial reporting.

SOC 2 stands for System and Organization Controls 2. It is an audit report that assesses the effectiveness of an organization's controls related to security, availability, processing integrity, confidentiality, and privacy.

ISO 27001:2022 is an internationally recognized standard for Information Security Management Systems (ISMS). It specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system within the context of the organization. This was a notable update to address rapid advancements in technology and cybersecurity since the prior 2013 standard.

ISO 22301:2019 is an international standard for Business Continuity Management Systems (BCMS). It provides a framework to help organizations prepare for, respond to, and recover from disruptive incidents such as natural disasters, cyber-attacks, or other emergencies.

ISO 27701 provides guidance for managing personally identifiable information (PII). It specifies requirements and best practices for establishing, implementing, maintaining, and continually improving a Privacy Information Management System. Achieving this certification demonstrates our commitment to protecting personal data, ensuring privacy governance, and meeting regulatory expectations.

PCI-DSS stands for Payment Card Industry Data Security Standard. It is a set of security standards designed to protect cardholder data and ensure the secure processing of credit card transactions.

GDPR stands for the General Data Protection Regulation. The main goals of GDPR are to protect the privacy and personal data of EU citizens and residents and to give individuals greater control over how their data is collected, processed, and used by organizations.

The EU-U.S. and Swiss-U.S. Privacy Shield Frameworks were designed by the U.S. Department of Commerce and the European Commission and Swiss Administration to provide companies with a mechanism to comply with data protection requirements when transferring personal data from the European Union and Switzerland to the United States in support of transatlantic commerce.

CSA compliance is widely used for cloud service providers and focuses on security controls in IaaS, PaaS, and SaaS offerings, providing security control transparency.

The Health Insurance Portability and Accountability Act (HIPAA) is designed to help protect continued health insurance coverage and establish industry-wide guidelines to protect the confidential use of personal healthcare information. This is typically applicable to Healthcare organizations or processors for Healthcare organizations storing or processing sensitive healthcare information.

CCPA stands for California Consumers Protection Act 2018. It is the law passed by the State of California as a response to the increased role of personal data in contemporary business practices and the personal privacy implications surrounding the collection, use, and protection of personal information.

FirstNet, short for First Responder Network Authority, is an independent agency within the United States Department of Commerce. It was created in response to the communication challenges faced by first responders during emergencies, disasters, and public safety incidents.