What is the ISO 27001:2013 Standard?

The International Organisation for Standardisation (ISO) is a global body that collects and manages various standards for different fields and disciplines. The ISO 27001:2013 standard identified over 100 requirements for a comprehensive Information Security Management System (ISMS) and defines how organisations should manage, handle and destroy information in a secure manner, including having robust and appropriate security controls.

ISO27001:2013 covers information security across the business, including human resources, supplier relations and communication.

As a contact centre, information and cyber security is essential to our operation. From protecting our customer and client data, to ensuring that our processes align with legislative and regulatory requirements, we understand the importance of demonstrating proficiency with regards to information security.

What does this mean for our clients and customers?

In short, it means we offer a comprehensive, coherent and secure information security system that can align with client requirements. It also allows us to further reinforce information security in the bespoke services we can offer for potential customers.

To achieve ISO 27001 certification, our ISMS was assessed by an accredited independent auditor and demonstrates that we manage information security in line with international best practices. Certification is an ongoing process of continuous improvement, review, and engagement with security standards and processes. It confirms our commitment to the security and confidentiality of the data we handle; it is a symbol of assurance and confidence for our clients and business partners.

So, what now?

Well, whilst we prepare for a brand new year of ongoing audits, we are hoping that 2022 brings us even more opportunities for improvement and refinement of our existing processes. By benchmarking our policies and procedures against this internationally recognised IS Standard, our clients, and potential clients, can be assured of the resilience and data protection we offer.

Alongside our annual PCI accreditation, our newly-acquired FCA accreditation and Cyber Essentials Plus certification, ISO 27001:2013 is another string to the bow of Interact’s proficiencies.

You can view our certificate here.

“A fantastic success indicative of the effort the team put in to get us here, and another vital step in our voyage of continued compliance. It has certainly been a learning journey, and one we look forward to continue being part of.”

Daniel Fay, Head of IT

“Fantastic team effort and further example of the business’ continued commitment to investment and growth in operational development and information security and regulatory compliance.”

Gary Rodgus, Head of Quality & Compliance