at a glance

Corporate Social Responsibility & Certifications

Corporate Social Responsibility

Corporate Social Responsibility (CSR) at Expleo Solutions is about how we manage our impact on society and the environment. Through its CSR initiatives, the Company focuses on promoting education for the differently-abled, under privileged,  protecting the environment and women empowerment.

Expleo Solutions works with the following Non-Governmental Organizations to ensure that its contributions are effectively utilized.

Vidya Sagar

Vidya Sagar The Spastics Society of India was born in March 1985 in a garage in Chennai. It was started by Mrs. Poonam Natarajan, the mother of a child with profound disability, since there were no services available for this group. It was renamed ‘Vidya Sagar’ in 1998. Today Vidya Sagar is housed in a building that is designed in a manner that is totally barrier-free, and accessible to persons with disabilities, on land leased by the Government of Tamil Nadu and with community support. Mrs. Natarajan who had equipped herself with training in special education started the services with three students and three staff members. The parent-training program under Home Management, was their first project in 1985. Its objectives are to work on strategies that will empower parents of children with neurological impairments to include their children within their homes and support their inclusion in the community. Vidya Sagar today runs several programs reaching out to over 3800 individuals with disabilities. This has been possible by setting up high quality delivery of services, focusing on early intervention, special education, physiotherapy, speech and communication therapy, vision training, occupational therapy, co-curricular activities, counselling, vocational training, exploring and creating employment opportunities and training of resource persons to work in the field of disability. Vidya Sagar is a rights based organization, with emphasis on creating awareness in the community on issues related to disability and advocating rights for persons with disabilities.

Agastya International Foundation

Agastya International Foundation- is a cause – not just an organization. Its mission is “to spark curiosity, nurture creativity, and instill confidence” in economically disadvantaged children and government schoolteachers by bringing innovative, hands-on science education and peer-to-peer learning to government schools and villages across India. Agastya runs one of the largest hands-on science education programs for children and teachers in the world! Many of the poor children in India begin with their future already laid out for them. They are destined to follow the well-worn paths of their parents and grandparents. But Agastya shows these children a wider world, exposing them to some of the benefits of an education. Whether on the main campus, or through a visit from a mobile lab instructor, children see Agastya as a place for discovery, where they learn to really see the world around them, to observe and draw conclusions about the connections between nature and themselves. Their minds and imaginations are stimulated through direct, hands-on engagement. Agastya allows them to wonder about the world, and freely ask, “How?” and “Why?”

Diya Ghar

Diya Ghar is an NGO with a heart for the migrant community. Diya Ghar started in 2016 with a vision for all children, irrespective of their economic status, to have access to stimulating and nurturing pre-school education. The organization’s primary goal is to provide quality education to children who lack access to proper schooling. Diyaghar establishes schools in remote and disadvantaged areas, ensuring that every child has the opportunity to receive a meaningful education. By empowering young minds, Diyaghar strives to break the cycle of poverty and create a brighter future for the next generation. Diyaghar’s dedicated team of volunteers and professionals work tirelessly to implement these initiatives and make a positive impact on the lives of those in need. Through their compassion, dedication, and commitment to social justice, Diyaghar NGO continues to transform lives and inspire change throughout India.

Siruthuli

Siruthuli is a Trust registered in the year 2003 by a few eco-conscious citizens of Coimbatore, Tamilnadu to address the environmental problems and to improve the water stress situation caused by the failure of monsoons for three consecutive years in the early years of the millennium. Since then they have implemented several water resource management initiatives such as rejuvenation of tanks and ponds, the creation of new water bodies, implementation of watershed projects, building percolation ponds, construction of rainwater harvesting structures that have facilitated in connecting the clouds to the aquifers to a large extent. They have desilted 12 tanks in Coimbatore district out of the 31 System tanks of the Noyyal River basin and also worked on rejuvenating many more village ponds. Percolation ponds having capacity of 8 million litres have also been completed at the Anna University Regional Campus and other locations. In our afforestation drive we have planted and nurtured more than 7 lakh trees in the region. Siruthuli is also involved in controlling the flies and odour in the Vellore garbage yard which carries the waste in the city through the application of Effective Microbes. Awareness programs are conducted on a regular basis with an in-house session every week for school children. They also organise campaigns in colleges and also for corporates.

Maharshi Karve Stree Shikshan Samstha, (MKSSS)

The ‘Maharshi Karve Stree Shikshan Sanstha (MKSSS)’, a very mature institution with a noble record of social service and empowerment, was founded in 1896 by the great visionary and social worker Bharat Ratna Maharshi Dhondo Keshav Karve. It has been committed to the main cause of “Empowerment of Women Through Education”. It was set up in the erstwhile ‘Hingne’ village near Pune city.

He founded the institution for upliftment, emancipation and education of women who formed a substantial section of the socially underprivileged. For his sacrifice and dedicated social work and his contribution to the noble cause he was awarded “Bharat Ratna” the highest National Civilian Award.

The MKSSS has spread its wings all over Maharashtra and more than 35,000 girl students are benefitting from this outreach. At present it runs 65 educational and other units under its purview. These units are located at Pune, Satara, Wai, Ratnagiri, Nagpur, Kamshet and Vasai. All these units are focus on girl or woman welfare. MKSSS also has hostel and medical facilities for students and working women and old age homes for helpless senior citizens.

It offers education to beneficiaries from pre-primary to post graduation, and across a wide range of subjects like Engineering, Architecture, Management, Nursing, Fashion Technology, Vocational Training Institute, Laser Technology & Applications, Jewelry Design. With changing market trends, courses on new subjects like Data Science, Artificial Intelligence, Machine learning, laser technology, Automotive Mechatronics are also planned.

Jagrut Apang Sanghatna

Jagrut Apang Sanghatna Sanchalit Mahatma Phule Apang Prashikshan Kendra, Maan (MPAPK) is a registered non-profit organization that has been working for the past 30 years with a program of education, awareness, rehabilitation, and sports for the disabled. Training is being given for Maharashtra government-approved ITI for disabled students within the age group of 16 to 30 years since 1990. Along with the said training, free accommodation and food facilities are provided in the hostel. During the one-year training period, efforts are made to rehabilitate the student physically, mentally, and emotionally by creating employment and providing the capital required for the business in material form.

Certifications

PCI DSS

PCI DSS: The Payment Card Industry Data Security Standard (PCI DSS) was developed to encourage and enhance cardholder data security and facilitate the broad adoption of consistent data security measures globally. PCI DSS applies to all entities involved in payment card processing – including merchants, processors, acquirers, issuers, and service providers, as well as all other entities that store, process or transmit cardholder data (CHD) and/or sensitive authentication data (SAD).

Expleo Solutions Limited adopted PCI DSS to meet the customer requirement specific to Cards & Payments domain. Expleo Solutions Limited has designed and implemented technical and operational controls to protect cardholder data.

 

Expleo Solutions Limited not only implemented a minimum set of requirements for protecting cardholder data, but also deployed additional controls and practices to further mitigate risks to address local, regional and sector laws and regulations. These controls also address the legislation or regulatory requirements on protection of personally identifiable information or other data elements.

The PCI DSS security requirements apply to all system components included in or connected to the Cardholder Data Environment. The Cardholder Data Environment (CDE) comprises of people, processes and technologies that store, process or transmit cardholder data or sensitive authentication data. “System components” include network devices, servers, computing devices and applications.

ISO 27001:2013

The value of information goes beyond written words, numbers and images. Knowledge, concepts, ideas and brands are intangible forms of information. In an interconnected world, information and related processes, systems, networks and personnel involved in their operation, handling and protection are assets, which like other important business assets are valuable to an organization’s business and consequently deserve or require protection against various hazards.

Assets are subject to both deliberate and accidental threats while the related processes, systems, networks and people have inherent vulnerabilities. Changes to business processes and systems or other external changes (such as new laws and regulations) may create new information security risks. Therefore, given the multitude of ways in which threats could take advantage of vulnerabilities to harm the organization, information security risks are always present. Expleo Solutions Limited believes that effective Information Security reduces these risks by protecting the organization against threats and vulnerabilities and reduces impact to its assets.

 

Information Security at Expleo Solutions Limited is achieved by implementing a suitable set of controls, including policies, processes, procedures, organizational structures, software and hardware functions. These controls are established, implemented, monitored, reviewed and improved to ensure that the specific security and business objectives of the organization are met.

Expleo Solutions Limited adopted ISO 27001, an International Standard for establishing, implementing, maintaining and continually improving an Information Security Management System. The adoption of an Information Security Management System is a strategic decision for an organization. The establishment and implementation of an organization’s Information Security Management System is influenced by the organization’s needs and objectives, security requirements, the organizational processes used and the size and structure of the organization. The Information Security Management System implemented at Expleo Solutions Limited preserves the confidentiality, integrity and availability of information by applying a risk management process and gives confidence to interested parties that risks are adequately managed.

At Expleo Solutions, the Information Security Management System is a part of the organization’s processes and is integrated with the overall management structure and Information Security is considered in the design of processes, information systems and controls.

ISO 9001: 2015

Expleo Solutions Limited promotes the adoption of a process approach when developing, implementing and improving the effectiveness of a quality management system to enhance customer satisfaction by meeting customer requirements. Specific requirements considered essential to the adoption of a process approach are understanding the customer requirement, understanding and managing interrelated processes as a system thereby contributing to the organization effectiveness and efficiency in achieving its intended results. This approach enables Expleo Solutions Limited to control the interrelationships and interdependencies among the processes of the system, so that the overall performance of the organization can be enhanced.

 

Expleo Solutions Limited process approach involves the systematic definition and management of processes and their interactions to achieve the intended results in accordance with the quality policy and strategic direction of the Leadership team.

Expleo Solutions Limited encourages risk-based thinking to determine the factors that could cause its processes and quality management system to deviate from the planned results, to put in place preventive controls, to minimize negative effects and maximise use of opportunities as they arise. Consistently meeting requirements and addressing future needs and expectations pose a challenge for organizations in an increasingly dynamic and complex environment. To achieve this objective, Expleo Solutions Limited adopts various forms of improvement in addition to correction and continual improvement, such as breakthrough change, innovation and re-organization.

SSAE 18/ ISAE 3402

ISAE 3402 (International Standard on Assurance Engagements) / SSAE 18 (Statement on Standards for Attestation Engagements) an independent assessment report as per the ISAE 3402/ SSAE 18 provides the confidence on control procedures, adequacy and reasonable assurance of our service delivery and information security, data privacy related controls. SSAE 18 is relevant for the US market while ISAE 3402 is relevant for the rest of the world. The assessment report illustrates the positive effects of properly functioning and articulated control environment to an organization’s senior management and our clients.

 

Outsourcing companies (Expleo clients) are looking for third-party assurance to provide their clients (Expleo) with comfort about their internal control environment. Replacing SAS 70, ISAE 3402 / SSAE 18 standards remain the most widely employed approach to demonstrate third-party assurance, providing coverage to users of outsourced services. The SSAE 18 “attestation” standard and the ISAE 3402 “assurance” standard essentially share a common framework derived from the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (AICPA), which put forth SSAE 18, and the International Auditing and Assurance Standards Board (IAASB) of The International Federation of Accountants (IFAC), which put forth ISAE 3402. This common framework between SSAE 18 and ISAE 3402 is one that represents a migration, adoption, and ultimately, an acceptance of globally accepted accounting standards, such as those of the International Financial Reporting Standards (IFRS), which are essentially the standards, interpretations and framework adopted by the International Accounting Standards Board (IASB).

Internal process audit team carries out regular process audits on compliance to the established process, customer service delivery fulfilment and Information Security controls. Over and above external auditors carry out periodical assessment as part of the aforesaid certifications. These are very much essential to ensure that the organizational processes are in conformity with those committed to the customers in terms of the customer agreements as well.