At Oli, we believe in helping companies provide proper mental health support for employees.
Proper mental health support means getting access at the right time to the right professionals. But it also means knowing that your most precious data will be safeguarded from unauthorised access, and handled with the utmost care and respect by those who need access to support you.
This is a core pillar of how we operate at Oli, and so we’ve put this document together to guide our customers, both existing and prospective, in understanding the efforts we make to keep employee data safe and sound.
We hope this answers all your questions, but if there’s anything else you’d like to know, please reach out.
Before going into detail about our security measures, here’s a summary of what Oli does.
We provide proper mental health support for employees.
Businesses around the world select us as their health partner to provide mental health support to their employees.
It is totally voluntary for those employees to use our services at their discretion, and if they choose to do so, their use is not shared in any way with the employer.
If they decide to use our services, we carry out a screening to understand some initial health information so that we can direct them to the best health professional for their needs.
Employees can then have video calls with their health professional, exchange messages, and take notes.
We provide high level data insights to the employer to support HR and leadership teams in creating a better work environment — but these insights are carefully crafted not to ever infringe on anyone’s right to privacy.
<aside> 👉 In terms of data, we: ✅ store and process basic personal data.
âś…Â store and process special category personal data (i.e. health data).
</aside>
We understand that having independent validation of our security program will be important to you. We’ve already successfully passed the following security certifications:
ISO/IEC 27001
ISO 27001 is an international standard to manage information security. Our security program is governed through our Information Security Management System (ISMS) which is aligned to the ISO 27001 standard.
Oli has achieved ISO 27001 certification in April 2024. As part our certification process, we carry out regular internal audits and external audits with the certification body.
We host the Oli application and data within Amazon Web Services (AWS), who are certified under ISO 27001, as well as SOC 2 and SOC 3.
<aside> đź“‹ Would you like a copy of our ISO 27001 Certificate? You can find the updated one here.
</aside>