Qh2ser Policy and Management Commitments

Since 1982, IOTA has continually developed its services in order to better meet the expectations of its customers and the evolution of its markets.

IOTA Group
January 15, 2026

Home »
Qh2ser Policy and Management Commitments

Check out our QH2SER 2024 report.

Since 1982, IOTA has continuously strengthened and developed its service offering in order to meet the expectations of its customers and the evolution of its markets. To fulfill its mission, IOTA gives the highest priority to :

Nuclear safety.
The health and safety of its staff.
A high level of radiation protection.
A strong information security culture.
Protecting the environment by reducing its impacts.
Ethical conduct and the prevention of all forms of fraud or corruption.
Customer satisfaction and trust.
Developing employee skills.
The prevention of all discrimination, coercion or harassment.
Actively listening to customers, employees, partners and suppliers.

IOTA relies on its Integrated Management System, which complies with ISO 9001, ISO 19443, ISO 14001, ISO 45001, ISO 27001 and CEFRI “E” standards, to achieve these commitments.

Access our Official certification records.

The overall objective is to provide high-quality services in compliance with regulatory and normative requirements. In terms of occupational health and safety, IOTA aims for a continuous reduction in accidents, with the ambition of achieving zero accidents.
Risks are identified, analyzed, and prioritized according to their severity, frequency, and level of control. Particular attention is paid to assessing compliance and implementing measures at client sites where IOTA employees work.

Quality

Strengthen and optimize the effectiveness of the Integrated Management System through the use of appropriate tools that support operational performance.
Maintaining a high level of quality in accordance with ISO 9001:2015, thereby consolidating its position in the technical assistance sector.
Limit the impact of events that may affect processes, monitor results and analyze causes in order to ensure risk control.
Prioritize clear and reliable communication, both internally and externally.
To foster a climate of trust and constructive dialogue with clients and employees.

Health / Safety at Work

Promote a strong culture of prevention of accidents, incidents and occupational diseases.
Make emergency management a priority through regular exercises and simulations.
To provide safe and healthy working conditions for the prevention of injuries and illnesses.
Comply with all legal and contractual requirements regarding occupational health and safety.
Eliminate hazards and reduce risks, including those related to the arduousness of work.
Continuously improve the OHS Management System.
Ensure consultation and participation of workers and their representatives, particularly through Health/Safety committees.
Provide the necessary training as well as appropriate Personal and Collective Protective Equipment.
Ensure rigorous control of the subcontracting chain and qualify partners.
Prioritize the use of previously trained staff.
Welcoming all visitors in a caring and safe environment.

Nuclear Safety

Ensuring a balanced, rigorous and prudent approach to our decisions in terms of quality, costs and deadlines so that nuclear safety is not compromisedcompared to any other priority.
Raising staff awareness of a safety culture in the workplace by :
- The integration of practices to ensure the reliability of the speaker through pre-job briefing, minute break, self-check, cross-check, secure communication, debriefing.
- Adherence to the fundamental functions of nuclear safety ensures the integrity of the three barriers for the protection of people and the environment against ionizing radiation.
- The individual development of a security professionalism combining an inquisitive attitude towards risky acts, behaviors and conditions, a rigorous and prudent approach as well as effective communication.
- Preventing and limiting risks to protect interests.
To continuously assess and improve the level of safety of the services provided and to ensure the use of adequate documented information.
Analyze and control security risks through site audits.
Communicate any problem or deviation transparently both internally and externally to all stakeholders, and also report any problem related to the human factor.
Prevent any risk of fraud or falsification through an appropriate device.
Encourage feedback and sharing of experiences.
To provide the company with the means and resources necessary to implement this policy and to guarantee the safety of our operations.

Environment

Preventing our environmental impacts through planned actions: awareness-raising, training, selective sorting, recycling and recovery.
Evaluate the organizational context of our company to ensure consistency with the Environmental Management System.
Identify and assess environmental aspects throughout the life cycle of our projects.
Strengthen dialogue with stakeholders and incorporate their expectations.
Contribute to the reduction of carbon emissions in accordance with the 2030 Sustainable Development Goals.
Reduce our energy consumption.
Encourage responsible modes of transport (carpooling, cycling, public transport).
Raising awareness among teams and clients about environmental impacts.
Maintain and enhance environmental performance in accordance with ISO 14001:2015.

Corporate Social Responsibility

Putting employee well-being first.
Respect the individual, their dignity and their fundamental rights.
To prevent all forms of discrimination and promote equal opportunities.
Protect personal data.
To contribute to sustainable employment and local socio-economic development.
Developing social dialogue in all its forms.
Ensure a fair compensation system.
To prevent any pollution or nuisance.
Combating active or passive corruption.
To guarantee the conditions for fair competition.
Evaluate the CSR practices of suppliers.
Promoting gender equality.
Encourage responsible purchasing.
Maintain a respectful, inclusive and recognition-based work environment.
Encourage employee participation in CSR initiatives and environmental projects.

Radiation protection

Comply with all regulatory requirements and the CEFRI (E) standard.
Keep workers’ exposure to ionizing radiation to the lowest reasonably achievable level (LRAL).
Prevent the risks of exposure.
Continuously improve our performance in radiation protection.

Information Security

This section applies to all employees, suppliers, subcontractors, partners and any person having access to IOTA’s information systems or data.
IOTA’s objectives are based on 4 guiding principles :

Confidentiality to protect sensitive information.
Integrity to guarantee the accuracy and reliability of the data.
Availability to ensure permanent access to information.
Traceability to track and identify access to data.

To achieve its objectives, IOTA commits to :

Ensure that information security management is aligned with the company’s values and the strategic directions defined by Management.
Ensure that information security objectives are established, measurable, consistent with the overall strategy, and reviewed periodically.
Properly manage assets, classify information, and control media and system access.
Allocate the necessary human, technical and financial resources to the Information Security Management System (ISMS).
To raise awareness and regularly train employees on information security by involving other relevant managers to also demonstrate leadership where it applies to their areas of responsibility.
Comply with regulatory requirements contractual and security needs of our interested parties.
Manage and reduce the risks to which the company is exposed.
Preventing security incidents and responding to them effectively.
Ensuring the security of communications, networks and information exchanges.
Define the nature and frequency of vulnerability and penetration tests.
Formalize the Group’s practices to guarantee the consistency and quality of security measures.
Ensuring business continuity to guarantee the resilience of our operations in the event of a major incident. This includes data backup and recovery strategies.
Integrate climate considerations into the company’s decision-making.
Continuously improve the ISMS through regular internal audits.

Responsibilities :

The Chief Information Security Officer (CISO) oversees the implementation of the ISMS and monitors its effectiveness.
Business/process managers ensure the application of security measures within their scope.
Each employee is responsible for implementing this policy and must report any security incidents.

Final provisions

Management is committed to analyzing feedback, integrating lessons learned, and ensuring the continuous improvement of all its management systems.
IOTA ensures the dissemination, understanding and application of this policy within the Group.
This document is reviewed annually by the General Management and is available in the QHSE Manual as well as on the IOTA website.

Mies, December 1st, 2025.

Thierry CUSIN

C.E.O

Blog