EHS Data is ISO 27001 Certified

What is ISO 27001?

ISO 27001 is the world’s best-known standard for information security management systems (ISMS). It highlights requirements that an ISMS system must meet, providing guidance for establishing, implementing, maintaining, and continually improving a ISMS (ISO.org, 2024) and is vital for companies to ensure IT security and privacy protection. 

If a company conforms with ISO 27001 it means that they have successfully implemented a system to manage risks related to the security of data handled by that company, and consequently that the system adheres to the best practices and principles contained within the standard.

Why is ISO 27001 Essential?

Threats from cyber attacks are continually emerging and evolving, and attacks on businesses can be extremely damaging. This highlights the requirement of a system that can help companies both identify and resolve potential weaknesses within their systems.

There are three principles of information security in ISO 27001 which include (ISO.org 2024):

  • Confidentiality: only the right people can access information held by the company.
  • Information integrity: Data used by the company is reliably stored and not erased/damaged.
  • Availability of data: The company and clients can access their required data when necessary.

Key Benefits of ISO 27001

The key advantages of having ISO 27001 certification include (ISO.org, 2024):

  • Being resilient to cyber-attacks.
  • Being prepared for potential threats.
  • Data integrity, confidentiality and availability.
  • Secure information in all data (paper-based, cloud-based, digital data)
  • Organisation-wide protection.

This ensures that EHS Data can be trusted to safeguard your data.

ISO27001 Certified

ISO 27001 and EHS Data

EHS Data offers Software as a Service (SaaS) to companies, with popularity for this option significantly increasing over the last few years. SaaS removes the need for organisations to manage their data and systems themselves and instead EHS Data offers a cloud computing platform which hosts the MonitorPro system. 

As a result, to continue in our efforts to provide industry-leading service to all our clients and ensure all our data is kept securely, EHS Data completed the process to become ISO 27001 certified in 2023 and has successfully maintained this certification since, covering the entire service delivery process.

ISO 27001 and MonitorPro Implementations

Having ISO 27001 certification is often a requirement of clients IT departments, and since MonitorPro already has this certification it can greatly streamline the process of gaining approvals to externally host your data with us.

By being ISO 27001 certified EHS Data makes every effort to secure clients’ data while being hosted:

  • Data is never copied/moved outside of the documented backup processes without instruction/authorisation from the client.
  • Robust Back up procedures.
  • Strong passwords kept securely.  Standard ports are not utilised and generic users are deleted.
  • Remote access to the servers is strictly limited and all non-essential ports are closed.
  • Client access to hosted environments are offered via user-specific usernames and strong passwords.

Disaster Recovery

As part of our ISO 27001 certification here at EHS data we have a documented process for backup and disaster recovery of our client data.  Our server providers also offer a range of redundancy and failover protection measures to maintain high availability.

Want to Find out More?

Contact us at support@ehsdata.com for more information on our ISO 27001 certification.

MonitorPro also has the MCERTS Accreditation

MonitorPro also has the MCERTS accreditation, and was first EHS Software solution to receive an MCERTS accreditation from the Environmental Agency.  

MonitorPro Key Facts

200

Clients worldwide

3000

Users worldwide

25

Years research & development

News & Information Hub

20 December 2024 in Articles

MonitorPro and ALS: Improving Environmental Data Management

Many sites still lack suitable environmental data management systems and rely on spreadsheets and paper documents for data collection. This poses a significant risk of data input errors, data loss…
Read More
9 December 2024 in Case Studies

MonitorPro Case Study: Untangling and Improving Client’s Data Management

Environmental data collection is a legal requirement for many sites whose operations may have a negative impact upon the environment, and as a result environmental regulations and permits are required…
Read More
4 December 2024 in News

Integration Features in MonitorPro

When choosing an environmental data management system there are a number of different factors to consider, however, one key area often overlooked is the integration abilities of a monitoring system.…
Read More