By the very nature of the International SOS business model, the protection of personal and sensitive information has always been a high priority to us. We respect the right to privacy of all individuals who entrust us with their data and devote significant resources to ensure the security, confidentiality, integrity and availability of the data we process.

We are committed to continuously evaluating and improving our policies, standards, processes and information systems to keep data safe, effectively support our clients and business services, and to comply with legal requirements. 

International SOS has recognised the passing of the GDPR as an opportunity to evaluate and further enhance the effectiveness and resilience of our global information security framework with a particular focus on the rights of data subjects. We regard this as a natural extension of the Duty of Care concept. 

On this page our clients, partners, members and employees can find information about how International SOS complies with the GDPR and its underlying data protection principles.

Should you have any questions, please do not hesitate to  get in touch with your dedicated International SOS contact or Human Resources team. Or contact our Data Protection Officer directly at


We make detailed information available to our clients and as part of tenders. Please get in touch with your International SOS point of contact to request any of the following:

- Unabridged description of our Information Security Management System
- Unabridged GDPR Narrative including data flow diagrams
- SSAE16 SOC2 Type II audit report 
- CAIQ and SIG assessment questionnaires
- Data Processing Agreement for Digital Risk Management and Digital Learning Services