Privacy and Information Security is a priority that CriticalArc takes extremely seriously.
Our unique continuous assurance approach is underpinned by our Information Security Management System (ISMS) which ensures:
- Effective risk management resulting in continuous improvement
- Organizational roles and responsibilities and segregation of duties
- Strict data management and retention controls
- Supplier scrutiny, and resilience of business systems and our SAAS products
- Organizational awareness and effective physical security
- Effective change management with regular audit and review cycles
- Best practice incident management
Our company and products are compliant and certified to a number of internationally recognized standards including:
ISO/IEC 27001:2022 – Information security, cybersecurity and privacy protection
ISO27001 is an international standard that helps protect the confidentiality, integrity, and availability of information. By achieving conformity with ISO27001, an organization demonstrates it has put in place a system to manage risks related to the security of data owned or handled by the organization, and that this system respects all the best practices and principles contained in the standard.
View the CriticalArc ISO 27001:2022 certificate.