ISO 27001 (formally known as ISO/IEC 27001:2013) is the international standard that provides the specification for a best-practice information security management system (ISMS). It is designed to help organizations manage their security practices in one place, consistently, and cost-effectively.
The ISO 27001 standard and ISMS provides a framework that helps Foleon to:
In a nutshell, this certification demonstrates that Foleon is effective in protecting your data, minimizing risk exposure, and fostering a culture of information security.
The process showed me how involved, efficient, and aware our team already was regarding security. Our new certification now demonstrates this to our clients as well.
Foleon considers security to be one of the hallmarks of quality, and to be paramount to our success. Our vision on security can be outlined along the pillars of confidentiality, integrity, and availability.
Because we run a multi-tenant platform, our software ensures that no information can leak between accounts owned by different customers. We call this separation a "Chinese wall." In addition, we take extra measures to guard the confidentiality of all data our customers share with us.
Our platform ensures the integrity of information for its users. This means that no data or derived information can be removed, changed, or altered in any way without the consent of the user that owns that data. As we continue to update our software, we take extra care to minimize risks pertaining to data integrity.
Because many of our customers rely on Foleon for critical business processes, we work hard to ensure our platform is up and running at all times — with scheduled maintenance and releases planned not to interfere with platform operation. Our goal is an uptime of 99.9% over a rolling 30-day window.
Foleon was audited in 2019 by Kiwa N.V., a world top 20 leader in testing, inspection, and certification (TIC).
For more information about the process, read our expert interview with Jeroen Bulters about how Foleon prepared and eventually earned the ISO 27001 certificate.