Socotra’s ISO 27001 Certification: our commitment to data security

April 16, 2020

As a modern, enterprise-grade core system to insurers all over the world, Socotra understands that our platform is at the heart of our customers’ operations. As such, data security and customer trust is a mission-critical focus. Our ISO 27001 certification underscores Socotra’s commitment to security standards put forth by the International Organization for Standardization.

What is ISO 27001?

ISO 27001 is part of the ISO/IEC 27000 family of standards, which provides a series of frameworks to help organizations benchmark their treatment of data. This designation is internationally recognized as the most reputable standard for the establishment and certification of an information security management system (ISMS).

Socotra services and processes in scope for ISO 27001:

The scope of the ISO 27001 certification is bounded by Socotra’s enterprise-ready insurance software as a service, including business processes, locations, technology, people, and information.

What does this mean for customers?

In short, our customers can rest assured that Socotra’s security management and privacy functions comply with leading industry standards. This externally validated certification demonstrates our obligation and our commitment to our customers’ information security. It plays a critical role in assuring our customers that Socotra takes all necessary steps to keep their data safe, secure, and accessible.

Obtaining Socotra’s ISO certification

You can download our ISO certificate at any time by filling out a short form here.