Our Journey to ISO Certification

1 March 2021

Quality is our priority. Read more on what is covered by our new ISO certifications in Information Security, Information Privacy and Business Continuity.

Zacco is proud to announce that our Cyber Defence Centre, our Digital Forensics team in Sweden and all relevant IT systems have now achieved three new international standards in the areas of information security, privacy and business continuity. These standards cover much of what goes on behind the scenes and include our information control systems, our underlying IT infrastructure and our business continuity, risk management and incident response processes. Above all, they offer independent verification of our commitment to privacy, data security and continuity for both our colleagues and our clients. Their achievement also makes us one of the first companies in Europe to have been accredited by Bureau Veritas in all three standards. This accomplishment stems from months of hard work and collaboration between our international offices, with the successful outcome being something that we are honoured to be able to now share.

 

Our new Bureau Veritas accreditation covers our Cyber Defence Centre, our Digital Forensics team in Sweden and our relevant IT Security and Information Management systems under the following International Standards:

ISO/IEC 27001:2013 for Information Security

ISO/IEC 27701:2019 for Information Privacy

ISO 22301:2019 for Business Continuity Management Systems

 

At Zacco, quality has always been our main priority, we work hard to adhere to the highest standards and the new certification demonstrates an independently verified commitment to being the best that we can be. We recognise the increasing importance of information security and integrity. Much of our working lives, as well as that of our clients, is now online and securing the data that we are responsible for remains essential to our continued success. Stakeholder trust is continuously developed but the certification of these international standards offers our clients an assurance that we are implementing the most comprehensive best practice available. Many clients find our commitment to information security invaluable, we manage their intellectual property, we secure their networks and systems against intrusion and we train their colleagues in how to treat information and data responsibly. It is with this in mind that we consider this achievement to be the foundation for expanding Digital Trust between our colleagues, clients and partners.

 

The accreditations were not an easy task. With over 200 controls, 600 pieces of evidence, multiple documents and 12 audit sessions over three locations with five capable and diligent auditors, the logistics involved were astonishing. We are proud of the way our international colleagues, and our management team, have supported each other through this monumental effort and the collaborative working environment that has further developed during this time will continue to benefit the organisation for years to come. The successful achievement of all three certifications is testament to what can be achieved when we work together, as well as the level of professional commitment and integrity of our colleagues.

 

Storing and securing data is an integral part of success in nearly every organisation that we work with today. It is regularly one of the most important tasks that CISOs and CIOs are faced with, so for Zacco to be able to say that we operate within a secure digital environment, where we protect user’s privacy and security, is proof that we practice what we preach. We have also taken steps to prepare for the unexpected, implementing robust processes and systems in place to mitigate potential risks wherever possible. Ultimately, we pursued these international standards because we believe in their underlying structures and we know that the most trustworthy way to demonstrate our commitment to quality is through such accreditations.

 

We look forward to sharing more about our ISO journey over the forthcoming weeks including more about how we achieved them, what the standards mean to us and, perhaps most importantly, what they signify for you, as our current or future clients.

 

We work hard to ensure that we are protecting client data, privacy and information security to the highest standards. If your current IP or Cybersecurity partner does not adhere to these same high standards then get in touch, we are always happy to have a conversation about what we can do to protect the value of your corporate information and intellectual property

 

Back to all news