-
Who we are
-
-
StrategyMission
Improving people's quality of life through the digital transformation of organizations and technological inclusion.
VisionTo be one of the most innovative digital leaders in Latin America.
Learn moreValues- Ethics and transparency
- Professionalism
- Respect
- Honesty
- Innovation
- Responsibility
- Effectiveness
- Integrity
- Customer orientation
- Punctuality
-
-
-
History
Sofis Solutions was born in 2005, in the city of Montevideo - Uruguay.
Since its inception, the main driver was and remains quality. This applies to processes, products, and relationships with the environment.The internationalization of the company It was one of the founding objectives. In the first stage, it expanded from Uruguay, and in the second stage, it opened offices in Latin American countries. Currently, it has offices in Montevideo, Panama, El Salvador and Ecuador.
-
-
-
Alliances
-
-
-
Certifications
CMMI-DEV-3
More information
National Quality Award
More information
ISO 9001:2015
Quality Management System
ISO 37001:2016
Anti-Bribery Management System
ISO 14001:2015
Environmental Management System
-
-
-
SustainabilityLearn more
Sofis Solutions integrates environmental, social, and governance (ESG) principles into its management and operations, driving sustainability through Digital Transformation. Its strategic approach prioritizes energy efficiency, digital inclusion, and transparency in digital governance, contributing to the responsible development of organizations.
-
-
-
What we do
-
-
IT projectsLearn moreAt our Software Factory, we specialize in providing software development solutions with a focus on excellence and sustainability.
-
-
-
Software qualityOur software quality services comprehensively address the aspects or dimensions of software quality, addressing this approach throughout the entire software development cycle.
- Manual and automated functional suitability testing
- Performance testing
- Software product quality
- Software quality consulting
Learn more
-
-
-
Staff AugmentationLearn moreWhat is IT Staff Augmentation? IT Staff Augmentation is a specialized technical staffing model that enables organizations to increase their agility and respond to the changing technological needs of the market.
-
-
-
ConsultancyIn the public sector, strategic decisions and projects with citizen-centered designs and excellence have the power to transform entire communities.Learn more
-
-
-
BIonA Suite
BIonA Suite is a comprehensive platform for the intelligent management of processes and services in public and private organizations. BIonA Suite facilitates smart transformation with a focus on public value and user experience. Learn more
-
-
-
Projects
-
-
Recent projects
FOCAL Regional StudyFOCAL - El Salvador
Single Registry of Uruguayans AbroadMinistry of Foreign Affairs - Uruguay
Population and Housing Census 2023National Institute of Statistics - Uruguay
-
-
-
Digital Public InfrastructureWhat are Digital Public Platforms?ProjectsProducts
-
-
-
Sustainable Development
-
-
Mobile applicationsWe create hybrid, native, and PWA solutions for devices with Android and iOS operating systems.
Some of our projects:Digital Patrols, Ecuadorian Bovine Information System, Easy Budget UY, Digital Portfolio, SIGES Teachers App, SIGES Parents App.
Learn more
-
-
-
FOCAL regional studyThe purpose of the study was to carry out a regional analysis with the objective of identifying and evaluating the maturity level of the member countries of the Latin American Government Accounting Forum (FOCAL), currently composed of Argentina, Bolivia, Brazil, Chile, Colombia, Costa Rica, Ecuador, El Salvador, Guatemala, Honduras, Mexico, Nicaragua, Panama, Paraguay, Peru, Dominican Republic, Uruguay and Venezuela.Learn more
-
-
- AI
-
-
Artificial IntelligenceLearn moreAdvanced Artificial Intelligence (AI) and Big Data solutions that transform the way organizations make decisions and optimize their operations. We specialize in the development of intelligent autonomous agents and generative AI solutions using large language models (LLMs), both on local infrastructure and in the cloud.
-
- Press Room
-
-
Sustainable development
-
-
-
Events
07/08/2025CAROSAI, Audit and Digital Transformation
-
-
-
Interviews
16/06/2025Virtual Threads in Java
-
- Innovation
-
-
#GreenSofisMore information
Methodology
#GreenSofis
Sustainable Digital Transformation Conference
#GreenPath
-
-
-
AI For Everything
It is an initiative by Sofis Solutions, from the Intelligent Solutions Division, that promotes the adoption of artificial intelligence as a key driver of efficiency and effectiveness in the intelligent era.
It integrates both administrative and operational processes, promoting an organizational evolution where technology amplifies knowledge, optimizes decision-making, and generates value in a sustainable and inclusive way.
More information
-
- Contact us
- ES
-
Digital Signature
Information Security Policy
Introduction
Objectives
Establish principles to ensure that the information technology assets of Sofis Solutions (people, processes, information, and technology) are adequately protected.
Justification
Need for a policy that establishes a comprehensive framework to safeguard the organization's information assets and ensure the confidentiality, integrity, and availability of data.
Scope
This policy applies to:
- All employees, contractors, consultants, temporary staff, interns, and any other type of professional relationship with Sofis Solutions, including third-party personnel.
- All locations where Sofis Solutions' information technology assets are hosted or used.
- All information technology assets of Sofis Solutions.
- Any information not specifically identified as the property of other parties that is transmitted or stored on Sofis Solutions' information technology assets or assets contracted by the company (including files, emails, and instant messaging).
- All devices connected to Sofis Solutions' networks or used to access its assets.
Audience
All Sofis Solutions staff and other interested parties.
Responsibilities
Roles and Responsibilities
- The Management of Sofis Solutions holds final responsibility for managing security risks and threats and oversees the strategy, funding, and resources for information security, relying on managers and coordinators.
- Management has the authority to:
- Establish the strategy, governance, and oversight of information security.
- Assign management responsibilities for information security.
- Management is responsible for:
- Providing leadership in information security policies, standards, and guidelines.
- Identifying and documenting information security controls and monitoring their effectiveness.
- Overall management of Sofis Solutions' information security risks and threats.
- Providing support and raising awareness on cybersecurity issues.
- Managing information security incidents.
- Supporting privacy and compliance events under the existing privacy policy framework.
- Managers, Heads, and Service Coordinators are responsible for managing information security risks and threats within their areas of responsibility.
- Information and IT asset owners are responsible for:
- Assessing, reporting, and escalating information security risks and threats, including those related to availability, confidentiality, and integrity associated with their information and IT assets.
- Assessing and managing information security risks and threats related to their service providers.
- Supervising access to their IT assets.
- Ensuring the management of their information security controls.
- Complying with general requirements established or approved by the organization, as well as relevant legal, regulatory, and applicable policies.
- Sofis Solutions collaborators are responsible for complying with the security policy.
- Collaborators are responsible for supervising and safeguarding the data and information systems within their defined scope of control and ownership. They are required to comply with policies and standards related to risks and to immediately report any actual or potential information security incident or threat through defined procedures.
Development
Definition of Information Security
Information security refers to the preservation of confidentiality, availability, and integrity of the company's or third-party information.
Guidelines and Requirements
- An inventory of information and information technology assets must be maintained.
- Information security risks and threats must be managed throughout the lifecycle of information technology assets.
- Information technology assets must be secured according to the level of risk they represent and with appropriate mitigation controls.
- All access to IT assets must be approved based on need and periodically reviewed.
- Information security events and anomalous activities must be monitored and analyzed in a timely manner.
- Information security incidents must be managed and mitigated in a timely manner.
- Business continuity and disaster recovery plans must be developed and tested.
- Information and IT assets must be managed in accordance with applicable laws, regulations, and contracts.
- Remote access is restricted to Sofis Solutions' business operation requirements and must include secure configurations and robust encryption methods.
- The information security policy serves as a framework for a documented and integrated program that includes policies, processes, and procedures related to access, use, protection, and management of logical and physical assets.
- Under the framework of this policy, information security objectives are periodically established within the ISMS (Information Security Management System), ensuring alignment with legal, regulatory, contractual, business requirements, specific objectives, and the organization's strategy.
- Security incidents must be reported immediately to Management.
- Information security performance indicators must be reported to Management at least annually.
- Information security risk indicators must be reported at least annually to Management and to the Coordinator of the Sustainable Integrated Management System.
Commitment to Continuous Improvement
This Policy establishes a commitment to the continuous improvement of the established Information Security Management System. This includes management based on the PDCA cycle, considering, among other tools: the management of related risks and threats, implementation of controls and reviews, and evaluation of system effectiveness through periodic reviews, internal and external audits, and improvement processes established at Sofis Solutions.
Consequences of Policy Violations
Violations of this policy will be considered grounds for disciplinary measures as generally provided by the applicable jurisdiction's regulations for each employee and specifically in the employment contract and confidentiality agreement.
Exceptions
Any exception to this policy requires formal approval from Management or a duly delegated individual.
Questions and Contact Information
If you have questions or inquiries regarding this information security policy or any content mentioned herein, you may contact us by email at seguridad@sofis.lat
Version: 6
Approval date: 07-07-2025.