Our Commitment to Quality & Information Security – ISO27001
We are delighted to announce that Kalamazoo IT has been recertified for ISO27001, affirming our dedication to keeping us and our clients safe and secure. This certification means a great deal for the business. It formalises the fact that we have systemised controls in place to guarantee the protection of both ours and our customers’ data and that we take Information Security seriously throughout the entire organisation.
The Information Security Management System (ISMS) we have in place ensures we take security awareness seriously. All of our employees are aware of and follow our policies and procedures, making certain that information security is embedded in our daily business activities and we have a risk management process that identifies physical security risks and risks related around people; employees, resources, and our IT processes.
We know that when our customers are for looking for IT companies to work with, they’ll be looking for organisations with a demonstrable commitment to information security, and the confidence this certification gives to new clients gives us an edge over our competitors in the field. The ISO27001 certification also helps us maintain strong relationships with our existing clients, showing that we have worked hard over the past three years with our monitoring and management of risks and ensuring the continual improvement of our processes.
This dedication to security is imperative now more than ever. In a time when employees are working remotely from home, and following a number of high profile data breaches, data security is at the top of most business agendas. The controls we have in place ensure that we are not open to any threats and that our employees understand that security requirements when working from home are no different than working from the office.
ISO 27001 certification is recognised as proof of our compliance with information security requirements. Our certification demonstrates that we are GDPR-compliant, and proves to regulators that we meet the Data Protection Act (2018) requirements.