Datagraphic has successfully passed its annual ISO 27001 certification audit for the fifteenth consecutive year.
ISO 27001:2013 is the international standard for Information Security. It sets the specification for an Information Security Management System (ISMS). A framework of policies and procedures, the ISMS includes physical and technical controls for an organisation’s information risk management processes.
Passing the audit again shows Datagraphic’s continued commitment to Information Security and to protecting the Confidentiality, Integrity and Availability (CIA) of personal data in its care.
Commenting in the ISO 27001 Management System Audit Report, auditors from Alcumus ISOQAR noted:
‘Datagraphic continues to demonstrate the effectiveness of their ISO 27001 Information Security Management System (ISMS) and compliancy against the C&CCC Standard 55 Cheque Clearing System through a robust and mature set of policies, procedures, and practices.
This audit went well with the cooperation and willingness of the team to supply objective evidence freely during this remote process.
Datagraphic demonstrated its strong commitment to a business-wide culture of Information Security. Its ISMS and associated Information Security Controls – developed over the past two decades – were seen to evidence a mature and effective ISMS designed to effectively preserve the Confidentiality, Integrity and Availability of the Information Assets Datagraphic store, access, process, and transmit.
The recommendation is for continued certification. We wish to extend our thanks to the Datagraphic team for their assistance, professionalism, and full transparency during the very successful audit.’
The audit team went on to say,
‘It was clearly evident that senior management is committed to the development and maintenance of the ISMS. They are ultimately responsible for continuous improvement, meeting standards, statutory and regulatory requirements through management meetings. And, communicating the importance of satisfying the needs and expectations of clients to personnel.
Excellent leadership and client focus were evident during discussions with top management and during an interview with the Group Managing Director. He has been with the organisation for over 20 years and is very hands-on with the ISMS.’
To learn more about Information Security at Datagraphic, please visit the Data Security page on this site.