An overview
The ISO/IEC 27001 standard, published together by the International Organisation for Standardisation (ISO) and the International Electrotechnical Commission (IEC), is an accreditation that showcases an organisation's commitment to maintaining and improving on its information security standards.
ISO 27001 contains the requirements for implementing an Information Security Management System (ISMS), which delineates the measures an organisation must take to ensure it is protecting the availability and confidentiality of its assets from any threats or vulnerabilities.
The breadth of the ISO 27000 series standard ensures its applicability to organisations of varying sizes and sectors, providing security against data threats and guidelines on effective mitigation of said threats. While this ISMS covers IT, it extends beyond to also include controls that an organisation believes must be included within the scope of the ISMS. In addition to providing a set of best practices, the standard also ensures an organisation is compliant with regulatory and legal requirements relating to the security of its information.
Plentific and ISO/IEC 27001
Plentific's achievement of ISO/IEC 27001 demonstrates its commitment to keeping its data, and that of clients, protected and compliant at all times. Our certification covers our businesses in UK and Germany. The international relevance and usage of this standard makes it an important commitment for us to maintain as we expand to geographies outside of the UK and Germany, establishing ourselves in the US market with a vision to enter additional markets in the future.
Our certifying body, The British Assessment Bureau, is UKAS-accredited and our certification includes the coveted 'Crown & Tick' mark, underlining the security that only comes from Government-backed certification.
At Plentific, we have designed a suite of IT security controls and additional risk management measures to address any threats to our customers or platform. Additionally, we have a management process that steadily ensures we meet the needs of, and adapt to, additional security measures as we continue to expand. We consistently evaluate risks, threats and vulnerabilities to measure their potential impact and how they can be mitigated, wherever required.
What compliance with ISO/IEC 27001 means for clients
Plentific's compliance with ISO/ IEC 27001 validates that, as an organisation, we have put in place both guidelines and principles to initiate, implement, maintain and improve the management of your information security.
Client services will not be impacted in any way by this. We will continue to provide the highest levels of security. This certification serves as an additional security credential for your reference.
Working with an ISO/IEC 27001 certified company like Plentific will not automatically certify your organisation by association, but can aid your organisation's ISO/IEC 27001 compliance effort - as you are able to cite our relevant credentials in your own compliance assessment. You will still need to engage with an assessment and certification body to evaluate your organisation's controls and processes when seeking ISO/IEC 27001 compliance.
Our ISO/IEC 27001 certificates may be requested and potential customers can reach out to info@plentific.com for more information.