Cloud hosting and IT Disaster Recovery provider, Databarracks, has been successful in achieving both ISO 27001 and ISO 9001 certification across the entire business.
The company, which protects the data of companies in the UK and around the world, has implemented the globally-recognised standards in order to further improve information security and customer service.
ISO 27001 is an international standard which defines the requirements for an Information Security Management System (ISMS). It means that Databarracks has demonstrated it has the procedures in place to protect and safeguard the confidentiality, integrity, and availability of any information it holds or processes, both internally and on behalf of its clients.
The ISO frameworks require a thorough inspection and risk analysis of all company processes:
“I’d compare it to a comprehensive service for the business – like an aeroplane being completely dismantled, checked and rebuilt,” reveals Peter Groucutt, Managing Director at Databarracks.
“Security has always been our watchword at Databarracks and, as our name suggests, it is something we take extremely seriously,” continues Groucutt.
“ISO27001 has given us a security-based framework around which to identify, measure and control the risks within what is an extremely complex hosting and services environment.”
“While both certifications work together within an integrated management framework, ISO9001 has allowed us to understand our customers more, enabling us to serve them better – which is the single biggest benefit for us as a business,” adds Groucutt.
With ISO certification Databarracks will undergo annual external assessments by BSi, the internationally recognised certification and standards body; three-yearly re-certification; periodic internal auditing; and monthly management review meetings. These assessments and reviews, coupled with direct customer feedback, go to satisfy the ISO management framework requirement for continual improvement.
“As our business has grown and our customers have asked us for further services, we needed a more robust framework to manage our customers’
experience of working with us,” says Peter Groucutt, Managing Director at Databarracks. “We also wanted to ensure that the cloud-based services we offer are designed, built and managed with security at the forefront of every single process.”