We are thrilled to announce that we have achieved our very first ISO 27001:2013 certification.
This certification demonstrates our commitment to safeguarding our customers, suppliers, and employee’s data & assets by complying with international standards and best practice for information security.
ISO 27001 provides a set of standardised requirements for an Information Security Management System. The Standard adopts a processes-based approach for “establishing, implementing, operating, monitoring, reviewing, maintaining and improving an information security management system.", and provides a framework for best practice.
The goal is to protect three aspects of information: Confidentiality, Integrity, and Availability.
In achieving this certification, we were able to demonstrate that across our business, in areas including data security, supply chain management and incident response, we adopt a systematic approach to managing risks and have controls in place to mitigate them.
Alongside our ISO 9001, 45001 and 14001 accreditations, the ISO 27001 further displays our commitment to operating at the highest standards, providing confidence and assurance around our service delivery, quality management and business continuity processes.
We would like to take this opportunity to thank Andy Bennett – H&S and Compliance Manager, for his time and efforts in achieving this.