Cheers! We did it. Infraspeak is delighted to announce that after a rigorous year of audits, workshops and painstaking documentation, we now have a big green tick next to the “ISO 27001” box, proving our commitment to secure data management! Allow us to explain exactly what this means:
ISO 27001 — an accepted industry standard
The International Organisation for Standardisation is an independent, international organization made up of 168 member states. They have set trustworthy, transparent and consistent standards for an astonishing 24,742 disciplines/areas ranging from the diverse international standards on things you wouldn’t expect (ISO 6 — Camera film speed), sustainability standards (ISO 14001 — Environmental management) and the reason we’re all here today, ISO 27001.
ISO/IEC 27001 is the world’s best-known standard for information security management systems (ISMS) and their requirements. These standards help companies to prove to stakeholders and clients (current and potential) that they are bulletproof with their data protection operations.
Unlike other guidelines, such as GDPR, ISO 27001 distinguishes itself as a comprehensive guideline. It doesn’t just concern business data stored electronically but also covers measures to protect physical assets and people (i.e. confidential documents being left out, open for all to see!) and any data shared with third-party suppliers. For this reason, it is considered by many experts to be the most important certification for data security.
Very nice… but why do I care?
When you use a platform like Infraspeak, think for a minute about the amount of data you’re sharing, every day. Data on your people, on your clients, on your assets, on your revenue streams, on your deliveries… data on everything. Do you see why you care yet?
As technology solutions like ours have raced ahead and grown massively in intelligence, so too have fraudsters and hackers. They’re finding ever-more creative and dangerous ways to hijack this information and use it for themselves.
What would happen if this data fell into the wrong hands? How would you feel if someone had access to all the assets in your estate, the amount they’re worth at a given time, and understood the times you had staff executing maintenance?
Without adequate protection, companies are a data leak/theft away from an absolute disaster.
And what does it tell me about Infraspeak?
Let’s go through the key details, one by one:
- It means we’ve taken measures to reduce and mitigate our vulnerability to cyberattack security risks and physical security threats
- Our assets such as financial statements, intellectual property, employee data and information entrusted by third parties are undamaged, confidential, available
- We have a centrally managed framework that secures all information in one place
- We have trained and improved our people, processes, and technology throughout our organisation to better respond to technology-based risks and other threats
- Any gaps in our physical and cybersecurity defences have been addressed (essential in order to obtain the certification).
You can trust us with your data and your digital transformation
You wouldn’t leave your house without locking your front door. You wouldn’t leave your bank pin written down somewhere obvious or share it with anyone, and you shouldn’t store your data in an untrustworthy platform. The data generated in your maintenance operation impacts your entire business, and you deserve to know that the company entrusted with your data, has, at the very least, taken every step possible to protect your information.
You can rely on us (99.9% of the time, that’s our uptime score…) to guard your data with integrity. The only thing we’ll share is a drink in your honour at one of our beer celebrations if we close a deal with you!
To sum up, what this means for Infraspeak, we wanted to share a quote from ISO:
Organizations that adopt cyber resilience through confident vulnerability quickly emerge as leaders in their industry and set the standard for their ecosystem. The holistic approach of ISO/IEC 27001 means that the entire organization is covered, not just IT. People, technology and processes all benefit.
Data is gold. As if having the best IMMP in the market; over 800 loving customers; an industry-shattering collaboration workspace for facility owners and service providers, and 2928 executable automation combinations weren’t enough…
We’re now part of the ISO 27001 team. We’re trusted by the industry-leading body to handle confidential data, and we’re incredibly proud of this achievement.
— For more information, we recommend you read these ISO guidelines documentations. They cover FAQs, key details and clear up many questions.