Veriff
The future of veriff

Setting the highest standards: Veriff’s strong information security management

ISO/IEC 27001:2022 and SOA (Statement of Applicability) extended to ISO/IEC 27017:2015 (Cloud Services) and ISO/IEC 27018:2019 (Cloud Security for PII data).

What are the ISO/IEC standards?

ISO is the short or common name of the International Organization for Standardization, also known as the Global Standards Organization.

This organization sets and monitors the international standard which specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system for many types of organizations.

IEC is the International Electrotechnical Commission, another international standards body that cooperates closely with ISO on electrical, electronic and related technical standards. 

Standards developed jointly with ISO are indicated as “ISO/IEC”. 

Information is an asset and, like other important business assets, has value to an organization and consequently needs to be protected.

What are the main requirements of the ISO/IEC standards?

ISO is a global standard and is required for any kind of organization concerned about the security of information management, the cloud service data protection, and the privacy management of personal information.

How does Veriff comply with the ISO/IEC standards?

Veriff is compliant and certified by CoalFire ISO/IEC 27001:2022 standard

This certification also extends to additional controls defined within ISO/IEC 27017:2015 (security for cloud services) and ISO/IEC 27018:2019 standards (protection of personally identifiable information (PII) in cloud services))

This norm is a security standard developed for cloud service providers and users to make a safer cloud-based environment and reduce the risk of security problems. 

We have also extended our scope to include requirements for ISO/IEC 27018:2019. This standard is one of the most critical elements of cloud privacy: the protection of personally identifiable information (PII). 

We have implemented our Information Security Management Systems to assure compliance with the ISO/IEC 27001:2022.

Learn more

For more insight into Veriff’s commitment to security and compliance, explore our Trust Centre.