A Safe Pair of Hands for SME’s Tackling Information Security and GDPR
- Security , Cybersecurity
- 14.06.2021 01:00 pm
Demonstrating its commitment to achieving excellent quality standards and processes, Fortis Data Protection & Compliance (DPC), which helps businesses ensure they are GDPR compliant has been awarded the IASME Gold Standard certificate and Quality Principles accreditation.
An alternative to the International Standard ISO9001, Quality Principles recognises businesses that can show a high level of customer services and customer interactions are delivered through an organisation.
The IASME Governance standard allows small companies in a supply chain to demonstrate their level of cyber security and the measures in place to properly protect their customers' information.
The standard was developed over several years during a government funded project to create a cyber security standard as an alternative to the international standard, ISO27001.
Howard Freeman, MD, Fortis DPC comments “This is an excellent achievement for the business which clearly exhibits our commitment to quality processes and standards. As a business we are operating at the same touchstones that we would be delivering for our clients, offering businesses a safe pair of hands as they tackle the issues of information security”.
IASME work alongside a network of over 250 Certification Bodies across the UK and Crown Dependencies to help certify organisations of all sizes in both cyber security and counter fraud. IASME is committed to helping businesses improve their cyber security, risk management and good governance through an effective and accessible range of certifications.
Howard Freeman continues, “Most businesses can apply for certification direct, however, depending on the size and complexity of an organisation, it would need to factor in costs of preparing and aligning internal practices with the schemes five controls, which requires time and expertise to embed within a firm’s own systems and processes. This is something many organisations overlook when implementing Cyber Essentials, which is why we advise hiring a consultant. We’ve gone through the process and have the expertise and specialist knowledge to help businesses keep their customers data safe. Organisations that don’t, risk failing their certification project and would have to go through the process again potentially with the cost of a new application”.