skip to Main Content

Introduction

At Lingo24 we’re committed to protecting the security of our clients’ business information. That’s why we’ve implemented an Information Security Management System (ISMS) that is compliant with ISO/IEC 27001:2013, the international standard for information security.

Compliance to this standard is not only good practice, as it protects both you and us from security threats, but it also allows Lingo24 to become a desired language partner for a higher level of client whose requirements for Information Security are mandatory.

Through ensuring that we and, by extension you, comply with security requirements, we chart a course for business growth that will allow us to channel more work your way.

These efforts affect every translator we work with. We already have clients with requirements in Information Security, and right now we’re working towards obtaining our ISO 27001:2013 certification as soon as possible.

To find out how our ISMS affects how we work with you, you must:

  1. Understand Key sections 1, 2 and 3 on this webpage in their entirety and carry out all stated actions in those key sections that are required of you
  2. Review Lingo24’s Security Awareness Training for Suppliers, at least every six months
  3. Understand and agree to the Language Services Agreement (LSA) available on Port.

Key section 1: You are required to treat all documents from Lingo24 as CONFIDENTIAL

Thanks to our internal processes and tools, you should receive very few documents from Lingo24. If you do, you must treat them all the same: as highly confidential and not to be shared outside of your organisation, unless that is needed to provide services to Lingo24.

You must also permanently delete any shared documents after you are finished using them.

How Lingo24 handles documents internally

At Lingo24 we use a classification system to help us understand how different documents should be handled. For some added context, here’s some more information on our internal document security classifications.

Remember that all documents you receive from Lingo24 should be handled as highly confidential and are not to be shared outside of your organisation, unless that is needed to provide services to Lingo24.

Confidential: Highly sensitive or valuable information, both proprietary and personal.
Disclosure: Must not be disclosed outside of the organisation without the explicit permission of a Director-level Senior Manager.

Restricted: Information the unauthorised disclosure of which would be serious and likely result in significant embarrassment to the organisation and possibly legal consequences.
Disclosure: Requires management authorisation.

Protected: Information whose unauthorised disclosure, particularly outside the organisation, would be inappropriate and inconvenient.
Disclosure: Requires management authorisation, unless as part of an agreed process.

Public (or unclassified): Information that may be broadly distributed without causing damage to the organisation, its employees and stakeholders.
Disclosure: Can be disclosed or passed to persons outside the organisation.

Key section 2: Specific requirements for working with us

In addition to how you handle documents you receive from us, we have specific requirements around how you work with us.

To make these requirements easy to understand and follow, we’ve written up a list of actions below that you need to follow at all times as you work with us.

Failure to comply here will result in an investigation and corrective actions that may include the termination of your LSA.

Please select whether you’re a freelance translator or specialist agency from the drop-down menus below:

  • You must have installed, and maintain, up-to-date antivirus software in the environment you use to access Lingo24 systems.
  • You must follow Lingo24’s password policy when using any Lingo24 system or service such as Coach or Port.
  • When working outside of Lingo24’s Translation Management System (TMS), you must not share data provided to you to third-party services. This includes third-party:
    • Hosted Machine Translation Services – such as Google Translate or Microsoft Translator, even if you have a paid account for such services
    • Hosted Translation Memories
    • Hosted Translation Platforms.
  • You must not share information shared with you by Lingo24 with any other party without our prior written approval. This includes, but is not limited, to:
    • Source and Target Files
    • Query Management Sheets
    • Client Related Email Correspondence
    • Client Glossaries and Style Guides.
  • When working outside of Lingo24’s TMS, you must not retain client data within your local environment beyond the duration of the project.
  • You must delete any client-specific data following the successful completion of the project i.e. it’s marked as “Ready to invoice” in Port.
  • You should review Lingo24’s Security Awareness Training for Suppliers, at least every six months
  • Where you store Lingo24 client data locally, it should be encrypted, either through full disk encryption, or as part of a secure container.
  • You must not share data provided to you to third-party services without prior written approval from Lingo24. This includes third-party:
    • Hosted Machine Translation Services – such as Google Translate or Microsoft Translator, even if you have a paid account for such services
    • Hosted Translation Memories
    • Hosted Translation Platforms.
  • You must delete any client-specific data following the successful completion of the project or task. This includes:
    • Source and Target Files
    • Translation Memory Data.

Key section 3: Our password policy

1. General advice and guidance

We strongly advise adhering to the following advice and guidance for your passwords on Lingo24 systems.

Do not share your passwords with others. It may sound obvious, but you should never share your password with other people – no matter who they are.

Use a password generator. It can be difficult to think of ways to create new passwords, and humans are generally bad at creating random data. Using a password generator is an easy way to quickly create new passwords that meet required policies.

Use a password manager. Managing multiple passwords is difficult, especially when they are generated randomly. Using a password manager to store passwords removes the need to remember passwords, or create a personal “scheme” for meeting password requirements (e.g. replacing “E” with “3”, “S” with “5”, etc.), which doesn’t offer much additional security.

Use multi-factor authentication when available. If the system you are using supports multi-factor authentication you should consider turning it on. Additional authentication factors reduce the ability of unauthorised individuals to access your accounts.

2. Password requirements

When creating and managing passwords for any Lingo24 system you must follow these requirements:

  • Password length: no less than 12 characters
  • Password complexity: your password should include an uppercase letter, lowercase letter, and one number or special character
  • Password reuse: do not use the same password that you’ve used for other systems, do not reuse old or expired passwords
  • Password expiry: there is no requirement to change passwords after a set period. However, passwords should be changed if you believe your account has been compromised, Lingo24 administrators ask you to change your password, or if your password has been shared with others.
Back To Top