Technology plays a vital role in our business model, as we plan to have a cluster of micro-centres seamlessly connected with the use of technology. Robust technology elements have been put in place comprising:
Technology which is fit-for-purpose , including servers with RAID technology, central workflow engine, capability to customize applications as per requirements & related tools, as well as good backup and recovery processes engineered to provide sufficient redundancy.
Dedicated seamless internet connectivity leveraging optic fiber (4 Mbps leased line from BSNL) together with structured cabling. To ensure redundancy of internet service, internet over wireless from a different service provider is in the process of deployment, using environment friendly wireless relays which are solar powered (mounted on small masts)
100% power backup, including UPS backup and silent DG set (within controlled limits of decibel levels) to ensure uninterrupted power availability.
Biometric access (fingerprint based) control systems to allow access into operational areas only to authorized staff. In addition, monitoring using CCTV and DVR to address data security concerns of customers especially around sensitive information.
Other controls include - authorized login based access for outside network access, secured channel – SSL authentication, restricted email and internet access, restricted network shares, proactive monitoring of networks and servers, fully patched network, plan to start conducting desktop, server and network audits to verify IT security.
Definition & implementation of backup process - of identified critical and non-critical production data & systems, distributed centers facilitate natural BCP in the event of disaster – different levels of BCP/DR planning available in line with criticality of data, plans include moving to usage of cloud services to maintain high availability and business continuity.
Plans to continue definition & implementation of processes in line with ISO 27001 - with focus currently on backup process, change management, incident management and asset management.