The GlobeSmart Learning Platform and related web tools are certified to ISO 27001:2013 and ISO 27701:2019
What are ISO 27001 and 27701 anyway?
ISO 27001:2013 is an Information Security Standard that is published by the International Organization for Standardization (ISO), the world’s largest developer of voluntary international standards, and the International Electrotechnical Commission (IEC). Based on an all-inclusive, risk-focused standard, it identifies requirements for a comprehensive information security management system and informs organizations on how they should manage and treat information security and also how information security risks should be identified, managed, and treated.
ISO/IEC 27701:2019 is a privacy extension to the ISO/IEC 27001:2013 created specifically to account for existing and evolving privacy regulations, such as the EU’s General Data Protection Regulation (GDPR).
What is the significance of certification?
Certification to the ISO 27001:2013 is evidence that Aperian Global has met rigorous international standards in ensuring the Confidentiality, Integrity, and Availability of the GlobeSmart Online Application Platform and related tools.
Aperian Global’s additional certification to ISO 27701:2019 demonstrates our continued commitment to Information Privacy at every level and ensures that the security of our personal data and information has been addressed by proper controls that are implemented in all areas of our organization. This is not just a good business practice in our view, but also ensures our continued objective compliance with international privacy regulations, such as the GDPR.
Continual improvement using the ISO 27001:2013 and 27701:2019 standards benefits every aspect of Aperian Global’s business and continually reaffirms our commitment to:
- Protecting client data and Personally Identifiable Information
- Assessing, minimizing, and eliminating risks and vulnerabilities
- Prioritizing information and privacy security by design
- Compliance with the highest standard of information and privacy security
But it's easy, right?
No. To achieve certification, our security and privacy compliance was extensively reviewed and validated by A-LIGN, an external independent auditing firm and ISO 27001 and 27701 registrar, after demonstrating our systematic approach to managing and protecting company and customer data. A-LIGN is an ISO/IEC 27001/27701 certification body accredited by the ANSI-ASQ National Accreditation Board (ANAB) to perform ISO certifications. These certifications run for 3 years at a time and have annual surveillance audits.
What does this mean for you?
As we have demonstrated, we take your data privacy very seriously and will continue to make operational changes that are recommended by emerging and evolving legislation. Please contact us at firstname.lastname@example.org if you have any additional questions.