VWO is ISO 27701:2019 Certified
VWO meets international standards for managing privacy and data protection.
About ISO 27701:2019
ISO/IEC 27701:2019 (ISO 27701) is internationally recognized and built as an extension of the widely-used ISO/IEC 27001 and ISO/IEC 27002 standards for information security management. It is a global privacy standard that focuses on the collection and processing of personally identifiable information (PII). This standard was developed to help organizations comply with international privacy frameworks and laws, and focuses on three main factors:
- Providing a framework for implementing, maintaining, and continuously improving a Privacy Information Management System (PIMS).
- Includes requirements and guidance for organizations acting as PII controllers and PII processors, a key distinction from General Data Protection Regulation (GDPR) compliance, and other privacy laws.
- Providing confidence to stakeholders and customers that organizations are maintaining the highest standards in managing privacy risks related to PII.
In addition, any ISO/IEC 27701 audit requires the organization to declare applicable laws/regulations in its criteria for the audit. This means that the standard can be mapped to many of the requirements under GDPR, California Consumer Privacy Act (CCPA), and other laws. Once mapped, the ISO/IEC 27701 operational controls are implemented by privacy professionals and audited by internal or third-party auditors resulting in certification and comprehensive evidence of conformity. This universal framework allows organizations to efficiently implement compliance with new regulatory requirements.
VWO and Wingify have received an accredited ISO/IEC 27701:2019 certification as PII processor and controller after undergoing an audit by an independent third party.
- Examination scope: Privacy Information Management System (PIMS)
- Certification: ISO/IEC 27701:2019
- Certification date: June 6, 2021 (Valid till June 5, 2024)
- Latest revision date: June 06, 2021
- Certificate number: PM 746567 (View it here)
Leading the way for compliance
The ISO 27701:2019 certification is a demonstration of our commitment to building a strong culture of security and privacy across all aspects of our business. The ISO frameworks emphasize continuous improvement, which aligns well with our passion for keeping pace with an ever-changing threat landscape to ensure the protection of our customer and employee data. We are committed to maintaining this certification in the years to come.