Protecting Your Data By Becoming ISO Certified

At DeltaXML we’ve always tried to be a pioneer in XML change technologies and understanding. The key to this is providing customers with reliable, safe software that shouldn’t need second-guessing.
Our new evaluation customer experience allows you to register and download software in an instant, but we wanted anyone using it to know their account is secure and the download safe. DeltaXML’s enterprise solutions support organisations across the globe working in highly regulated industries where they must show they operate to the highest standards. These standards are often internationally recognised, such as those set out by the International Standards Organisation (ISO). There are many standards, some specific to industries, however, there are two which are important to DeltaXML and our customers; ISO/IEC 27001 Information security management, and ISO 9001 Quality management.

We have started to release SaaS products and wanted to show that we take security seriously, so it made sense to implement ISO 27001. At the same time, we looked at ISO 9001 because we wanted to build a process of continuous improvement into the business with the aim of providing the best quality products and customer support that we can. Both of these standards fitted with where we wanted to take the business at the time.

After an initial assessment found that we were in pretty good shape already, we were left with a number of recommendations to implement. It took us a few months to get from there to our first certificate, but that doesn’t mean the work is done as continuous improvement is baked into the standard! Since getting certified, we have fine-tuned our internal auditing processes to make them easier to perform, and easier to report. In-turn, these internal audits can lead to improvements of processes – this entire process is a direct result of the requirements set by the ISO certifications.

Certifications are renewed annually after a thorough audit by an independent credited third party authorised by ISO to review and approve the current implementation at an organisation.

Tristan Mitchell, Product Director says “If you’re thinking about going for certification, I would definitely recommend it. One worry I had beforehand was that there would be a lot of irrelevant paperwork, but in reality, everything has its place and is useful for improving our business. We may not have put some of the processes in place had we not been certified, but it has certainly been beneficial to do so.”

DeltaXML: www.deltaxml.com