FREQUENTLY ASKED QUESTIONS/What are your information security standards?/


What are your information security standards$7

alf abides by high-level information security standards in order to provide you with the best possible services, without taking any risk that could compromise the data your entrust us with.

1. Digital ethics rules

The Paris bar regularly issues guidelines to bring digital security matters to the attention of lawyers. These recommendations intend to increase French lawyers' awareness about information and communications technology along with the associated risks incurred in their day-to-day practice.

Even if alf is not subject to the provisions of the Paris bar as we are not a law firm, our team is still composed of former lawyers, in-house counsels and legal experts who strive for data security and observance of professional secrecy. Thus, we comply with the digital ethics rules that are relevant to our activity. The following are the issues we are mainly focusing on:

  • the physical protection of the devices on which data is stored;
  • the protection of our computers and IT systems with strong passwords, heightened vigilance & watch, reliable anti-virus softwares, etc;
  • the storage of sensitive data using the servers of a trusted partner with the best available encryption technologies;
  • the routinization of data backups;
  • the use of secured networks, even when working out of the office;
  • the guarantees of our trusted partners concerning confidentiality, professional secrecy, transparence and independence;
  • the information of our clients on an ongoing basis.

2. Our compliance with the GDPR

The General Data Protection Regulation (Regulation 2016/679, also known as GDPR) is a EU regulation on privacy, implemented since May 25, 2018. alf has established a responsible data processing in order to abide by the requirements of this regulation which reinforces the rights of European citizens as regards with their personal data.

Our team has carefully taken into consideration the set of recommendations issued by the CNIL (Commission nationale de l'informatique et des libertés, the French Data Protection Authority), as far as the transparence of our data processing is concerned: from the moment you entrust us with your information, we implement reasonable measures to inform you about the reasons for collecting your personal data; we help you understand the resulting treatment; and we give you control over your data.

By enabling you to exercise your GDPR rights as one of our clients, alf emphasizes the importance of having deep and trusting relationships.

For more information about the latter, please read our terms and conditions. Also, do not hesitate to contact our team: we will be happy to answer your GDPR requests.

3. Becoming ISO 27001 Certified

alf has been working with its partners for several months now to be eventually ISO 27001 (Information Security Management System) certified by an external certification body in the first quarter of 2020.

ISO 27001 is an internationally renowned standard in the realm of information security. The certification will reward our efforts and guarantee our clients that we offer the best standards for data protection.

We are implementing and testing our own information security management system with the cooperation of our whole team (lawyers, developers...), in order to optimally manage the risks incurred by the processing of sensitive data: this approach is not only about IT infrastructures, since ISO 27001 also focuses on individuals and processes.

alf's compliance with this very demanding standard is an opportunity to remind our clients that our service strikingly stands out against our competitors'.

You have for sure understood that our clients' data are in safe hands. The security of the information we are entrusted with is a priority, because naturally, it is an absolute prerequisite to build trusting relationships.

Our experts are available to reply to your questions about information security: do not hesitate to leave them a message on our website or to send them an email!