Activ Absence and Information Security

Activ Absence and the Activ People HR suite are developed, managed and supported by Codel Software Ltd. Codel Software Ltd have under gone a rigorous information security risk assessment, and have implemented an Information Security Management System (ISMS) to eliminate, reduce and monitor all the threats identified in the risks assessment.

An annual independent audit of the information security at Codel Software Ltd is completed in order that certification is maintained to meet the International Information Security standard ISO27001.

Information Security PolicyCodel Software

Codel Software Ltd is an independent software development company whose core services include:

  • Software Development

  • Hosted Solutions

  • Applications Support

In the provision of these services, Codel Software will interact with a variety of information assets, with various degrees of confidentiality. They will also be required to complying with statutory and regulatory legislation and other applicable requirements to which they subscribe (contractually and voluntary). The purpose of the ISMS is to manage the information Assets providing assurance of its confidentiality, integrity and availability.

To provide interested parties with the assurance that information is being ‘handled’ appropriately Codel Software has implemented an effective Information Security Management System (ISMS) that complies with ISO 27001:2013.



Fundamental Objectives

Codel Software are committed to continually improving the ISMS and has established a number Information Security Fundamental Objectives.


  • To protect the organisation’s business information and any customer information within its custody or safekeeping by safeguarding its confidentiality, integrity and availability.

  • To establish safeguards to protect the organisation’s information resources from theft, abuse, misuse and any form of damage.

  • To establish responsibility and accountability for Information Security in the organisation.

  • To encourage management and staff to maintain an appropriate level of awareness, knowledge and skill to allow them to minimise the occurrence and severity of Information Security incidents.

  • To ensure that the organisation is able to continue its commercial activities in the event of significant Information Security incidents.