Further to our compliance with GDPR in 2018, Arktek are pleased to announce that we have gone one step further and have now been accredited with ISO 27001:2013.
ISO 27001 is the international standard that describes best practice for an ISMS (information security management system). An ISMS is a systematic approach consisting of processes, technology and people that helps us protect and manage all of our stored information through effective risk management.
The Difference between ISO 27001 and GDPR
ISO 27001 mandates that organisations conduct a thorough risk assessment by identifying threats and vulnerabilities that can affect an organisation’s information assets, and to take steps to assure the confidentiality, availability and integrity (CIA) of that data.
GDPR specifically requires a risk assessment to ensure an organisation has identified risks that can impact personal data.
ISO 27001 addresses the importance of business continuity management, whereby it provides a set of controls that will assist the organisation to protect the availability of information in case of an incident and protect critical business processes from the effects of major disasters to ensure their timely resumption.
ISO 27001 compliance means that Arktek is constantly reviewing and updating our ISMS in line with changes to the threat environment and business developments.
The Benefits of ISO 27001 Compliance include:
- Increased reliability and security of our systems and information
- Improved customer and business partner confidence
- Increased business resilience
- Alignment with our customer requirements
- Further improvement of our management processes and integration with corporate risk strategies