MMG has recently obtained the ISO 27001 certificate awarded by AENOR. This document guarantees that the Spanish start-up has implemented and maintains an information security management system in accordance with the UNE-ISO/IEC 27001:2014 standard. This is one of the most critical certifications in information security worldwide.
As AENOR points out, one of the main assets of any organisation is information. Protecting it is a guarantee for customers and users, as well as a legal requirement. The ISO 27001 certificate recognises compliance with all the security measures necessary to avoid risks. “It contributes to promoting information protection activities in organisations, improving their image and generating trust in third parties”, AENOR points out.
ISO 27001, a commitment
MMG has opted to adapt to the regulations governing ISO 27001 as part of its commitment to safety. In fact, the tools developed by the company comply with the European Data Protection Regulation (GDPR) and the US Health Insurance Portability and Accountability Act. (HIPAA). These are the strictest European and US data protection standards.
The ISO 27001 certificate is a step further in the start-up’s commitment to safeguarding data. To achieve this, the company has been working for months under the supervision of a committee created exclusively for the same. Staff awareness has been part of the process, which started at the end of 2018. “Our tools are now even more credible, thanks to the work of the entire team,” said Oleg Vorontsov, executive director of MMG.
AENOR came into being in 1986 as the Spanish Association for Standardisation and Certification. In 2017, it was split into two entities. On the one hand, the UNE, the organisation responsible for the development of standardisation in Spain, was created. On the other hand, AENOR, “a knowledge management company that helps to correct competitiveness gaps through conformity assessment, training and information services,” was created.