FutureOn is not only a trusted partner in name, but also by nature. To add to our extensive security protocol measures, we recently attained two significant certifications in the digital safety space for FieldTwin: ISO 27001 and Service Organizational Control Type 2 (SOC 2). The awarding of these certifications emphasises the dedication to high standards of safety and data management for both our employees and our customers.
In March 2023 our advanced IT team, led by Lewis Carhart, Head of IT and Security Operations, started the process of obtaining both certifications by working with an external auditor to ensure full compliance and independent verification of the whole process. With the help and guidance of the external body, the team has ensured all data protection processes and company-wide security guidelines, including secure password procedures are communicated across the whole company.
ISO 27001 – an international standard for information security – is granted to companies that meet premium standards of data security. The standard’s best practice approach helps organisations manage their information security by focusing on three main areas: people, processes and technology. We have demonstrated the importance of best practice in security management, providing our customers and partners with the confidence that their data is safeguarded.
SOC 2 is a cybersecurity framework which ensures third-party service providers store and process client data securely. The framework outlines the criteria needed to uphold a gold standard in data security, based on five trust service principles: security, privacy, availability, confidentiality and processing integrity. We have undertaken the work to guarantee all five pillars are met, providing further data confidence to its customers and partners.
These certifications are more than just a badge of honour, they represent our commitment to quality, security and customer needs. Not only that, but the certifications have also resulted in a laser sharp focus of an already existing high quality performance culture throughout the company.
Although our security procedures already met required standards, these enhanced accreditations give our customers increased confidence that their data is safe with FutureOn and that our processes will meet rigorous requirements set out by procurement teams.
Both certifications will be renewed after 12 months however, we will continue to work with the external auditors to update and renew policies throughout the year, underlining our commitment to both internal and external data protection.
We take our customers’ data security seriously. Research shows that one in two businesses have been a victim of a cyber attack in the past three years. By taking action and implementing rigorous processes like those needed to comply with ISO and SOC 2 certifications, companies are less likely to experience cyber security issues.
That, along with the continued focus on cyber security of our dedicated IT and Security team, demonstrates how committed we are to delivering – and surpassing – best-in-class standards for our customers.
In line with our security policies, we are creating the Trust Vault – a place on our website where our existing clients can safely access all our policies and legal documentation. Further details will be shared on our website.