NuCompass Earns ISO 27001 and 27018 Certification

We want to share with you the exciting news that NuCompass has earn ISO 27001:2013 and ISO 27018:2014 certification. ISO 27001/27018 are the de facto international standards for Information Security Management.
 
ISO certification is achieved only after a rigorous process, which includes:

• Establishing a recognized framework to ensure the fulfilment of all commercial, contractual, and legal responsibilities
• Developing a systematic approach and risk management process to manage sensitive information
• Conducting a formalized training program across the organization

Achieving ISO Certification
To pass the ISO audit and obtain certification, NuCompass was required to implement:

• Processes for systematic examination of information security risks, which included threats, vulnerabilities, and impacts
• A comprehensive suite of information security controls and other forms of risk management
• Management process to ensure that controls continue to meet information security needs

Benefits to Clients and Transferring Employees
The benefits of ISO certification to you and your transferring employees include: 

• Ensuring integrity of client data
• Protecting confidentiality of transferring employee information
• Implementing best practices that protect infrastructure and assets
• Providing a roadmap to focus on strategy and risk management

ISO 27018 further ensures data security for PII (Personally Identified Information) in the cloud. This is particularly important relative to General Data Protection Regulation (GDPR), as well as the California Consumer Protection Act (CCPA) that went into effect January 1, 2020.