ISO 27001 Compliance

Our Commitment to Information Security

At Datrix, we recognize that information is central to our business, and as such, information security is of utmost importance to us. Our company is fully committed to transparency with regard to our security program, and we strive to ensure that our clients feel both informed and secure when using our products and services.

To this end, we proudly adhere to the International Organization for Standardization's (ISO) 'ISO 27001' standard for Information Security Management Systems (ISMS). This globally recognized certification ensures that we maintain a high level of organizational data security by following a strict policy framework. Furthermore, it requires the development and implementation of information security policies and procedures across our organizational hierarchy, encompassing applied security controls across physical, digital, and operational domains.

ISO 27001 in practice

ISO 27001 is a globally recognized certification that guarantees a high level of data security within an organization. To achieve this certification, organizations must follow a strict policy framework and develop information security policies and procedures that are implemented throughout the hierarchy.

These policies and procedures encompass physical, digital, and operational controls:

  • Physical controls refer to tangible measures such as access control cards, security lights, and surveillance cameras.
  • Digital controls pertain to technical considerations such as authentication procedures, network infrastructure and design choices, encryption methods, and data storage practices.
  • Operational controls relate to administrative considerations such as employee background checks and training, governance groups, and least privilege access policies.

We have implemented these controls within our software solution. Our application architecture has layered security approaches that include role-based access permissions and authentication procedures.

Committed beyond ISO 27001

We believe that a holistic approach to security is critical to managing and mitigating risks that might otherwise be overlooked. We continuously monitor changes in the Information Security space and update our procedures accordingly. Our staff receives regular training to stay up-to-date on the latest technological advancements, information handling methods, and security procedures.

We are proud to hold an ISO 27001 certification, and we have also received recognition from independent auditors for our compliance with complementary standards of data security best practices. However, our commitment to security goes beyond these standards.

By taking a proactive approach to information security management, we give our clients the peace of mind they need to make informed decisions every day. Our focus on security allows our clients to trust in the reliability and professionalism of our organization, and we are committed to maintaining this trust over the long term.