Since driasi was established in 1982, we have been committed to the highest level of service, data privacy and security, and ingenuity. Our culture and cornerstones have been the foundation of how we operate on a day-to-day basis, make decisions and our social accountability to our people and planet. As a global-leading provider of business outsource problem solving, with an instinctive commitment to excellence underlying everything we undertake, we recognize the extensive reach we have and are committed to corporate social responsibility in adhering to the highest standards in ethical behavior, environmental sustainability, and data privacy and security.
driasi takes very seriously the core values that have allowed the company to prosper over time: The Cornerstones are the foundation of our mission and business strategy.
We imagine we ARE the customer –
So, we are dedicated to exceeding our customers' expectations.
We expect excellence of ourselves, but we strive for perfection –
So, we take ownership of the tasks we perform and the decisions we make.
We work for one, we work for all –
So, we treat our Company, our Customers, and our Colleagues the way we'd expect to be treated.
Also rooted in our Cornerstones, is the established corporate culture and the way we treat our employees. driasi lives by the foundational beliefs which guide the team in the right direction: we have the responsibility to protect our employees’ human rights, support our employees’ wellbeing, ensure the safety of our workforce, foster both personal and professional growth and development, and to be an advocate to them. Our initiatives are focused on health and wellness, diversity, equity and inclusion, and training and development. We believe all have an opportunity at driasi and have several policies supporting the people and culture side of our corporate social responsibility. driasi also allocates funds in the budget for donations to local charities. Our wellbeing committee volunteers in the community and may promote certain volunteering opportunities to our employees.
Internal policies include:
Equal Employment Opportunity – It is the policy of driasi to protect the employment rights of qualified applicants and employees regardless of an individual’s race, color, sex, age, religion, national origin, genetics, sexual orientation, gender identity/expression, disability, and/or other protected categories under applicable laws.
Anti-Harassment, Anti-Discrimination and Anti Bullying Policy - driasi strives to provide a work environment free from harassment, discrimination or bullying based on the person’s protected status. The company is committed to providing a safe and inviting workplace atmosphere that is free from intimidation and offensive behavior.
Diversity, Equity, and Inclusion Policy - driasi is committed to fostering, cultivating, and preserving a culture of diversity, equity and inclusion. Our human capital is the most valuable asset we have. The collective sum of the individual differences, life experiences, knowledge, inventiveness, innovation, self-expression, unique capabilities, and talent that our employees invest in their work represents a significant part of not only our culture, but our reputation and company’s achievement as well.
Every bit as important as the driasi Cornerstones are in the execution of driasi’s business is the ethical framework within which it operates. driasi holds itself to the highest standard in ensuring the trust and respect of all groups with interest in the firm – board members, shareholders, staff, clients, customers, and the community. This code of ethics has been established to formalize the company’s views on proper and respectful conduct, to provide staff with both granular explanation of driasi’s expectations and a method for communicating any witnessed failure to adhere to those expectations.
driasi Code of Ethics
The Board of Directors (the “Board”) of driasi (the “Company”) has adopted the following Code of Ethics (the “Code”) to apply to the managers, officers, and employees of the Company and its subsidiaries. This Code is intended to focus managers, officers, and employees on areas of ethical risk, provide guidance to help them recognize and deal with ethical issues, provide mechanisms to report unethical conduct, foster a culture of honesty and accountability, deter wrongdoing, promote:
- Honest and ethical conduct that will serve the best interests of the Company, including the ethical handling of actual or apparent conflicts of interest between personal and professional relationships;
- Full, fair, accurate, timely and understandable disclosure in reports and documents filed with regulatory authorities;
- Compliance with applicable governmental laws, rules and regulations;
- The prompt internal reporting to an appropriate person or persons of violations to this code.
No code or policy can anticipate every situation that may arise. Accordingly, this Code is intended to serve as another source of guiding principles. Employees are encouraged to bring questions about particular circumstances that may involve one or more of the provisions of this Code to the attention of their supervisors. Managers and officers should bring any such questions to the Chief Executive Officer or Chief Financial Officer, who may consult with outside legal counsel as appropriate.
driasi respects the environment in which we live and is committed to protecting our planet through minimizing our environmental footprint and do so through the following initiatives:
- Complying with environmental laws and regulations in the regions we conduct business in.
- Minimizing the impact our operations have on the environment through prudent and sound measures such as recycling and energy saving initiatives.
- 100% of all shredded material is recycled.
- Once computer equipment is completely wiped clean, it is with absolute certainty that the data cannot be recovered, 100% of driasi’s computer equipment is either recycled, upcycled, or donated.
- Employees bring office supplies they no longer need to the warehouse. Other employees can then use these office supplies rather than purchasing new ones.
- Conducting business in the most environmentally prudent manner as possible.
- Whenever it makes sound business sense, driasi offers our clients electronic alternatives to paper customer correspondence and fulfillment.
- Lighting, computers, and office equipment are set to hibernate after a certain period of inactivity to minimize waste.
- All driasi employees are asked to refrain from printing materials that can be viewed electronically. driasi went from 100% printed training material, manuals, quick reference guides, assessments, and forms to 0% in the last year, whereby utilizing internal software and technology systems.
- Human resource and payroll files are 100% digital.
- driasi embraces an environmentally friendly travel policy using video conferencing and other ways of communication rather than physical travel.
- Establishment and adherence to environmental health and safety policies to reduce work hazards such as the Infectious Disease Control Policy and Return-to-Work Preparedness Plan and Policy.
- Where applicable, selecting vendors and partners who share the similar corporate environmental values.
- Facility cleaning products are environmentally friendly.
- driasi provides employees with mugs, glassware, dishware, and silverware and removed disposable products from lunchrooms and coffee stations.
- driasi’s Wellbeing Committee leads efforts across the organization, in partnership with leadership, in looking for new ways to lessen driasi’s environmental impact, and whenever possible, implement new initiatives when they arise.
Data Privacy and Security
Protecting the privacy and security of our clients’, customers’, vendors’, and employees’ information is paramount in our responsibility to maintain their trust. Based on the risks related to Information Security and Privacy in our business operations, we take precautions to safeguard sensitive information, inclusive of customer data, in order to ensure a safe and secure online environment.
Internal policies include:
Computer Use Policy - This documents policies and directives have been established in order to protect this investment, safeguard the information contained within these systems, reduce business and legal risk, and protect the good name of the company. All employees are required to follow this policy, and to use DRIASI’s computer resources in a responsible, ethical, and lawful manner. Use of DRIASI's computer system constitutes consent by the user to all of the terms and conditions of this policy.
Clean Desk Policy - Outside of regular working hours, unless employees are working at the time, all employees must clear their desks of all sensitive or valuable data and ensure that it is properly secured before leaving work for the day.
Building Access Policy - All employees are required to wear identification while in the building. Only authorized personnel have access to the driasi building. If visual identification cannot be made, a supervisor or manager will be contacted to provide a personal escort. Anyone in the building not wearing a badge will be escorted to the nearest manager.
Email Policy - Every DRIASI employee is responsible for using the electronic mail (e-mail) system properly and in accordance with this policy. The e-mail system is the property of DRIASI. It has been provided by DRIASI for use in conducting company business. All communications and information transmitted by, received from, or stored in this system are company records and property of DRIASI.
Internet Policy - Although DRIASI recognizes that the Internet has useful applications to DRIASI's business, employees may not engage in Internet use without prior approval from their manager, and unless a specific business purpose requires such use. Access to the internet will be on a business need basis which will be determined by each department’s manager.
Password Policy - Users are required to select their own passwords for access to driasi network systems. Passwords are a minimum of ten, alphanumeric, non-blank characters. The system requires password changes every 30 days, and the same password cannot be used for the next 10 cycles.
Personal Electronic Device Policy - This policy outlines the use of personal electronic devices at work, the personal use of company cell telephones and the safe use of cell telephones by employees while driving. Use of cameras and the camera function on personal electronic devices are strictly prohibited on the company premises unless approved by Management.
To further showcase and show our commitment to Data Privacy and Security we partake in several audits. Our organization depend heavily upon our IT networks to deliver both products and services. The network is our primary means of interacting with our customers, vendors, and suppliers. With so many stakeholders involved, it is critical for us to have the very best cybersecurity protections and controls in place to protect data and guard against potential cyber security threats. Network security audits play an important role in this process. Our organization has two major security audits conducted annually by external auditing firms. The process involves a detailed and measurable assessment of an organization’s security policies and controls. A security audit is an exhaustive process that can take some time to complete. That is because auditors don’t just look at the technical side of network security (such as firewalls or system configurations), but also at the organizational and human side of security policies.
PCI DSS – The Payment Card Industry Data Security Standard (PCI DSS) is a set of security criteria designed to standardize the way that all businesses that accept, transmit, process, or store credit card data to maintain the security of the environment. The PCI DSS applies to all organizations, regardless of number of transactions or size, that transmit, accept, or store any cardholder data.
SOC2 – SOC 2 is an auditing procedure that ensures we as a service provider securely manages our data to protect the interests of our organization and the privacy of our clients. For security-conscious businesses, SOC 2 compliance is a minimal requirement when considering a SaaS provider. Developed by the American Institute of CPAs (AICPA), SOC 2 defines criteria for managing customer data based on five “trust service principles”—security, availability, processing integrity, confidentiality, and privacy.