In July 2019, SupplHi – the Vendor Management platform for industrial equipment and services – obtained Bureau Veritas the ISO/IEC 27001:2013 certification, a widely recognized international standard outlining the best practices for Information Security Management Systems for the “Design, development and management of a SaaS platform for the collection and management of Vendor Management information”.
ISO/IEC 27001 certification is a globally recognized international standard outlining the best practices for Information Security Management Systems. To attain ISO 27001 certification, SupplHi was assessed by an independent auditor (Bureau Veritas) against the framework and guidelines set forth by the International Organization for Standardization of information security management system (ISMS). Throughout the assessment, SupplHi successfully demonstrated a systematic and documented approach of how the sensitive company and customer information such as financial information, intellectual property, employee and customer data, and information entrusted to it by third parties are protected and managed.
“This Certification is a further proof of attention to quality and data protection that is at the basis of the SupplHi platform. As a leading Vendor Management platform, we are vigilant about the importance of protecting the confidentiality and integrity of data of our clients, globally.” said Gabriele Muscas, Chief Technology Officer at SupplHi. “The achievement of the certification demonstrates how SupplHi uses the best practices in every stage of development of the platform. In SupplHi we want information security extending to every level of an organization’s people, processes and technology, including its IT infrastructure stack, access control, asset management, human resources processes and application security.”
ISO/IEC 27001 requires numerous controls for the establishment, maintenance, and certification of an information security management system (ISMS). The Standard ensures that organizations have established methodologies and a framework to business and IT processes to help identify, manage, and reduce risks to the security of information.
SupplHi is a SaaS (“Software as a service”), 100% cloud platform, meaning that many aspects of the Information Security Management System are incorporated by design. Furthermore, the cloud-based nature enables access anytime, from anywhere, by eliminating the need to download or install any software, or waiting for new features to be released.