IntegrateHQ has been certified by independent third party auditors as compliant with ISO/IEC 27001:2013.
What is ISO/IEC 27001:2013?
ISO/IEC 27001:2013 is a globally recognized security management standard that details best practices and comprehensive security controls outlined in ISO/IEC 27002.
Certification requires a rigorous information security program be in place, with an Information Security Management System (ISMS) formally detailing holistic policies, procedures and auditable checks covering all matters pertaining to information security. The standard requires that:
- We systematically evaluate our information security risks, taking into account the impact of threats and vulnerabilities.
- We design and implement a comprehensive suite of information security controls and other forms of risk management to address customer and architecture security risks.
- We have an overarching management process to ensure that the information security controls meet our needs on an ongoing basis.
In scope activities
All IntegrateHQ operations are in scope for our certification, as covered on our certificate:
Information security requirements relating to the IntegrateHQ platform and associated development,
hosting, sales, support and implementation services.
Where can I read more?
The ISO web site has a great summary of the 27001 standard and certification process here. You can search for IntegrateHQ on the independent ISO accreditation register here to cross check the status of our certification.
