NetPay has received their ISO 27001 Certification (ISMS)

ISO security certification

Our dedication to security ensures all measures are in place when it comes to information safety.

In case you are unaware, many businesses need to have an Information Security Management System (ISMS) which leads to an ISO 27001 Certification. An ISMS is a centrally managed framework that enables us to manage, monitor, review, and improve information security practices in one place.

‘Information Security Management System’ is built up of three primary areas:

  • Confidentiality – Ensuring data can only be accessed by authorised people.
  • Integrity – Ensuring data is accurate and up to date.
  • Availability – Making sure data can be accessed when required.

Here at NetPay, we have objectives that we strive to stick to:

  • To prevent information security risks or reduce them to an acceptable level.
  • Ensure consistency in the delivery of internal and customer projects.
  • Support efficient working networks and systems for our employees.
  • Protect data and information where we are either the controller or processor.
  • Maintain physical and logical access controls.
  • Maintain and educate employees.
  • Continue to improve ISMS based on feedback from users, customers, reporting, incidents, and any other tool.

To achieve the certification, we had to undergo an audit from BSI. An auditor took random individuals directly or online and test whether our IT and security policies were being followed and implemented. An example of an audit would include undergoing specific questions which could include a login scenario to ensure passwords are long enough and no information is left open and traceable.

All employees within NetPay are responsible for the security of information and ensuring policies are followed accordingly. We strive to follow these to the best of our ability. In doing so, our ISO 27001 Certification has been awarded to us with it to be revisited in 2025. This ensures it is always up to date and at the forefront of our minds on an ongoing basis.

For more information on IEC/ISO 27001 (ISMS), visit BSI’s website here.

Share this: