Your information's security is of top priority to us and we take every possible care to protect our customers' information. Our security processes define preventive, detective and corrective controls at various levels.

Security Controls:

• Hardware and Software Platform
• Network and Telecommunications
• Operations Management
• Protection of Information Assets
• Business Continuity & Disaster Recovery
• IT Development, Acquisition, Implementation, and Maintenance
• Business Process Evaluation and Application Systems

Our Information Systems Security Policy (ISSP) is a critical element of our IT security program. The policy identifies basic rules & procedures that TRRS & associated organizations must adhere to while accessing computer resources in order to ensure the confidentiality, integrity, and availability of data and IT resources. The Board of Directors officiates as the Chief Sponsor for the IS security and nominates one professional from the senior management team. The Information Systems Security Officer along with a team is responsible for all security issues.

The security policy also has a detailed and regular security audit carried out by external agencies specializing in security.

TRRS - Privacy Group:

• Safeguarding customers' information from unauthorized access
• Collect, maintain and use information, as necessary to provide specific products
  and services
• Construct privacy policies and data protection agreements and procedures in compliance with the laws in the United States, India and the European Union
• Assessing HIPAA compliance and drafting of HIPAA privacy notice and policy documents along with Healthcare service and business associate contracts
• Drafting service and outsourcing agreements with vendors that include terms & conditions, representations and warranties.