We’re happy to share with you our new ISO 27001 certificate! And if you’re wondering what that means, don’t worry – you’re not alone.
You know how every company out there brags about prioritizing the privacy of their customer data? And yet, every once in a while, we see news about the misuse of customer data?
The ISO 27001 certificate is created to standardize information security and ultimately increase the level of protection of all company data.
Keep reading to learn more about the ISO 27001 certificate, what it means for you, and how we’ve earned ours.
What is ISO 27001?
ISO 27001 is an international standard for managing information security. The standard was developed by the International Organization for Standardization (ISO) that provides a framework for information security management systems (ISMS).
An ISMS is a systematic approach to managing sensitive company information so that it remains secure. An ISO 27001 certificate demonstrates that the organization is committed to preserving information security, whether in the form of customer or organizational data.
Get faster feedback with online proofing
Bring files, versions, feedback, and approvals together with Filestage.
Five reasons ISO 27001 benefits teams using Filestage
Information security is a broad term that doesn’t tell you much about the day-to-day benefits you’ll experience by using a tool like Filestage with an ISO 27001 certificate.
To help you better understand all the tangible benefits of our ISO 27001 certificate, we’ve summed them up in five points.
Here they are:
- Increased security
- Better data protection
- More reliability
- More compliant processes
- Improved team coordination
1. Increased security
By earning the ISO 27001 certificate, we’ve made sure that every aspect of our organization follows high-security standards.
Here are just some criteria we had to meet to earn our certification:
- Demonstrating that we’re committed to spending time and money to protect all data
- Computers and mobile devices are configured securely
- Our team members understand their role in the security of the company
- The licenses of the software we use are checked
- Our workplace is secure
2. Better data protection
By improving our organization’s security, we’ve made sure all our data is highly secured.
This means that all customer data is also well protected. In other words, you can rest assured that all personal information or confidential data you upload to Filestage is now more secure than ever.
3. More reliability
From now on, you can more reliably upload sensitive data for review in Filestage. All your sensitive content from unreleased campaigns can be shared, edited, and reviewed in Filestage with even more confidence that its privacy won’t get compromised.
4. More compliant processes
With the new ISO 27001 certificate, we had to make sure that both our organizational and product security are meeting the standard. This means that we have 14 policies in place that help us improve or maintain security in our organization and the Filestage platform.
For every new feature that gets developed we have a set of checkpoints in place, making sure that every step of the way is as secure as possible. This includes various access management restrictions, security audit of the tools we use, and adequate tests in every step of development.
5. Improved team coordination
To get our ISO 27001 certificate, our team also had to assess and improve all our processes. And in short, the better processes we have in our everyday operations, the better support we can offer you. Having efficient processes in place is particularly beneficial when our customers find themself in a crisis.
Your ISO 27001 questions answered
1. What are the three key aspects of ISO 27001?
Here are the three key aspects of ISO 27001:
- Information security risk management: This is mainly about consistently managing external and internal information security risks. It requires having a mechanism to identify and address any dynamic issues that may occur. ISO 27001 also requires making information security an overall organizational effort.
- Governance: the certificate requires a well-established effort from the management to promote information security. This means that neither a CEO should have the authority to push a project without a careful security examination. Equally, the CEO should be the one promoting secured processes.
- Continuous improvement: To showcase your team’s long-term dedication to building safe and sustainable products and processes, everyone applying for an ISO 27001 certificate needs to work on continuous improvement.
2. What does ISO 27001 certification focus on?
ISO 27001 is an international standard with a focus on information security. The standard was developed to help companies of all sizes and from all industries protect their information systematically and cost-effectively.
3. What is the validity of your ISO 27001 certification?
ISO 27001 requires every company with their certificate to undergo a surveillance audit at least once a year to maintain ISO 27001 certification. This involves a review of our Information Security Management System to ensure that it continues to meet the standard’s requirements.
In other words, we must stay compliant year after year to keep the certificate.
4. Does ISO 27001 cover GDPR?
Yes. As long as you keep your ISO 27001 certificate, you’ll also make sure that your company is GDPR compliant.