We are incredibly proud that itslearning is ISO 27001 certified. ISO 27001 is one of the most widely recognized international standards for information security management. The standard identifies requirements for a comprehensive Information Security Management System (ISMS) and defines what an organization has to do to manage data more securely.
itslearning is ISO 27001 certified. This means that our internal processes are conformed to ISO 27001 requirements. The processes are checked by an independent audit from DNV (Det Norske Veritas). Our last ISO 27001 audit was in January 2023.
What does being ISO 27001 certified mean for our users?
But it doesn’t stop with just getting the certificate. Being ISO certified also means that we must continuously ensure our processes meet the international standard, and keep up to date records. We also need to prove that we continously improve our processes. We will be audited every year by DNV, with a re-certification process done every third year.
What this simply means for you, as the user, is that we continuously improve the security of your data.
"We have long had a systematic approach to information security because we have been committed from Day 1 to data security and protection.”
One of the main processes is risk management – to identify, analyze and evaluate any weakness in the information security processes. This means the information and asset owners must do regular risk assessments and follow up with a risk treatment plan.
A commitment from every single itslearning employee
We have long had a systematic approach to information security because we have been committed from Day 1 to data security and protection. It is also the duty of every single employee at itslearning to be cognizant of information security. Everyone working in itslearning has an obligation to report information security incidents and vulnerabilities to the security team. We are all in this together.
To receive the ISO 27001 certificate, our security compliance was validated by the independent audit firm, DNV, after a rigorous process of demonstrating an ongoing and systematic approach to managing and protecting company and customer data. We put in a lot of hard work to become certified, so we are, naturally, incredibly proud of our achievement and our continued commitment to data security.
Protecting data, yours as well as ours, is very important to us and this ISO 27001 certification is another milestone in our ongoing journey. We remain vigilant and have now outlined a more comprehensive security compliance roadmap, so watch this space for more updates.