We are delighted to announce that Imprima, ISO 27001 certified since 2010, has now successfully transitioned to the new ISO 27001:2013 standard.
Why ISO 27001?
We believe that ISO 27001 is the most appropriate certification for providers of highly-secure Virtual Data Rooms. As an internationally recognised accreditation, based on best practice, it measures a company’s ISMS (Information Security Management System) against requirements set by the ISO (International Organisation for Standardisation). Whilst other certifications, such as the North-American SOC 2 (formerly SAS 70), also have their merits, these are not necessarily based on an established security framework, auditing only compliance with self-defined processes. Moreover, ISO 27001 is a continuous process: to maintain the compliance certificate, organisations must submit to rigorous and mandatory audit and review processes on an ongoing basis. As a result, the ISO 27001 certification is the more difficult for an organisation to achieve.
Why ISO 27001:2013?
The ISO 27001:2013 accreditation ensures information security is managed integrally within the platform and processes of iRooms to a consistently, high and rigorous standard. To that end, its controls list has been updated and enhanced to fully encompass the growing security threats to organisations.
Changes include emphasis on information security in relationships with suppliers (and other ‘interested parties’), as well as a holistic approach to competence: organisations must now ensure that all personnel are competent to perform any work affecting information security, rather than “responsible personnel” only, as was the case under the older version of the ISO27001 standard.
Imprima has employed an ISMS (Information Security Management System) covering all information security aspects, including all people, in all offices, all processes, the entire software system, suppliers and data centres, for several years, long before this was formalised in a standard. It’s the only way we have ever operated.
That’s a claim no other tier-1 VDR supplier can make. Now, having achieved the ISO 27001:2013 accreditation, it’s a certified fact.
We believe that security is something which should never be compromised. If you also believe this, it’s time to make iRooms from Imprima your VDR of choice.