Last updated: August 2025

At S4 Digital, safeguarding information is a core commitment. Our Information Security and Privacy Policy Manual establishes clear directives, controls, and responsibilities to ensure the confidentiality, integrity, and availability of all data entrusted to us.

We are ISO/IEC 27001 certified, demonstrating that our systems and processes meet the highest international standards for information security management. This certification, renewed in 2025/2026, covers the full lifecycle of our software development and operations, complemented by rigorous governance practices.

Our security framework is also aligned with both the EU General Data Protection Regulation (GDPR) and the Brazilian General Data Protection Law (LGPD). This ensures that personal data is handled lawfully, transparently, and securely across all jurisdictions where we operate. Key measures include:

• Strong access controls and mandatory multi-factor authentication

• Formalized information classification and handling policies

• Encrypted backups and disaster recovery procedures

• A documented incident response plan with continuous monitoring

• Vendor and third-party compliance requirements embedded in contracts

• Mandatory privacy and security training for all staff and contractors

• Prohibition of uncontrolled “free” AI tools, ensuring only secure enterprise AI is used

By combining ISO 27001 certification, a robust security policy framework, and strict GDPR/LGPD compliance, S4 Digital provides a secure, transparent, and reliable foundation for clients and partners worldwide.

Contact Us

For any queries, please contact our Data Protection Officer: privacy@s4digital.com. If you identify a potential vulnerability, please contact security@s4digital.com.