We have ISO/IEC 27001 certificate!
ISO/IEC 27001 is an international standard published by the International Organization of Standardization (ISO) and the International Electrotechnical Commission (IEC). It belongs to the broader family of standards ensuring the security of stored sensitive data such as financial information, employee details, intellectual property etc.
ISO/IEC 27001 relates to the effectiveness of an information security management system (ISMS) and provides strictly defined requirements which, when met, entitle to acquire certification to this standard.
ISO/IEC 27001 regulates two main domains:
- Assets management is an area dealing with ensuring the optimal level of protection to company’s assets. Assets are understood as anything that presents value to an organization and therefore it should be well monitored.
- Access control is an area that sets requirements regarding the terms of access to the electronic forms of information processing systems used by an organization. The regulations in this domain are aimed at establishing procedures for obtaining authorized access to the company’s data and of acquiring the appropriate level of privileges within those information processing systems.
It is noticeable that ISO/IEC 27001 standard touches very delicate issues which seem to be even more critical in the context of new regulations, such as RODO for example, which are just about to enter into force.
This is why our pride from the ISO/IEC 27001:2014 certificate, obtained in September 2017, is even greater today. Now when the proof of our best security practices, adopted in fact in the very beginnings of SolDevelo existence, belongs to the respected family of ISO standards, our Clients can be sure that we take the responsibility, that comes from handling sensitive information which we are entrusted with, seriously.
The thorough certification process provided us with the opportunity to expand the awareness of security risks and enabled a broader understanding of the role that well-designed procedures have, in efficient data protection. Having an open discussion regarding the necessary improvements definitely resulted in implementing powerful solutions which gave us additional confidence in the highest quality of our services also in terms of righteous data management.
Possessing the ISO/IEC 27001:2014 certificate makes us quite a unique organization. According to statistics from www.iso.org, SolDevelo is now a member of a rather exclusive group of 6578 European companies in the information technology sector that have earned such distinction.
Becoming certified to ISO/IEC 27001:2014 standard is not the end of our efforts. We have to be ready for constant improvement. And this is exactly our plan now.