Ascensor, a Leeds-based website and digital marketing agency, has completed their final stage audit and have received full certification for ISO 27001, a rigorous international standard covering information security management systems.
The achievement follows a thorough, independent two stage assessment of all aspects of Ascensor’s data management and data security processes.
Ascensor MD Andrew Firth explains: “I’m very pleased that we have attained this accreditation. This is the highest-level information security standard and demonstrates that we have rigorous technical and management systems to control the processing of data, particularly Personally Identifiable Information.”
“ISO 27001 accreditation is now required by many financial services firms and government agencies. Achieving full accreditation is an important credential in the procurement process for larger contracts and will give all Ascensor clients the reassurance that we’re protecting theirs and their clients’ data.”
Andrew explains: “Financial organisations and public sector agencies are increasingly adopting open networks, including e banking and increased access to personal data. So, they face new information security threats, including cyber-attacks, phishing and malware.”
“As a key digital partner, we can demonstrate that we have a fully certified information security management system to reduce the risks to customer and financial data, and customer privacy. The team at Ascensor has been working towards the ISO 27001 standard since 2018 and our data management processes are very mature, however achieving full accreditation is a vital part of our commercial strategy.”
He adds: “Covid-19 has allowed us to demonstrate how effective our business continuity policy is. We’ve also seen a huge increase in cyber security threats and criminal activity during 2020, and ISO27001 ensures we’re better equipped to support clients’ information security needs than many of our competitors.”
“Ascensor has a number of financial services clients, including Morses Club PLC and Dot Dot Loans. Full ISO 27001 accreditation will enable us to further develop their relationship with these and other financial service providers, where the processing of Personally Identifiable Information is paramount.”
Andrew continues: “ISO 27001 certification is not just about the technical measures that we have in place. It also shows that we have robust business controls and management processes for all the information security threats that we have identified in our wide-ranging risk assessment. The requirements for certification also included our processes for managing our people, disaster recovery and business continuity, as well as physical access control in all areas of our building.”
The ISO27001 certification caps a very successful year for Ascensor, despite tough market conditions. They recently announced 55% growth, for the second consecutive year, marking their best-ever results, with a turnover in excess of £1.5m. 2020 has also seen an increase in headcount from 19 to 30, together with the acquisition, in July, of Bradford based web design and app development business Webposse, and web hosting firm ClaretMedia LLP.
In addition, the Leeds based team has celebrated new client wins, including digital transformation projects for specialist lender Shelby Finance, Nobia / Magnet Kitchens and Challenger bank U-Account.