ISO 27001 - Data Security

SECURING YOUR DATA

We work tirelessly to ensure your data and your customers' data is secure. Much of the Group is ISO 27001 certified* and our dedicated compliance team constantly reviews our processes and procedures to ensure that we adhere to the criteria for certification and apply best practice in our processing of data. Our Compliance and Legal teams work together to ensure that we are adhering to the latest developments in data protection law and practice.

As a trusted partner to hundreds of businesses, we manage and process huge volumes of sensitive information on behalf of our customers. Customers who work with us are reassured that our longstanding commitment to data protection and information security goes far beyond the requirements of the Data Protection Act 2018.

PART OF OUR BUSINESS CULTURE

Our commitment to the highest standard of information security is business-wide and all of our support functions such as Finance, IT, HR, Expert Liaison and Sales & Marketing are within the scope of our Group ISO 27001 certification.

Our governance framework is led by our Compliance team, the fully qualified Data Protection Officer and the Information Security Committee. In addition, every team within the business has its own data protection representative (DPR). Our DPRs attend regular training sessions to take ownership of information security within their teams, which ensures responsibility cascades down throughout the business.

COMPREHENSIVE INFORMATION FOR YOUR DUE DILIGENCE

Our customers frequently require detailed responses for their own RFP, tender documentation and bid management processes. A key part of this will inevitably relate to information security with our customers’ employees keen to know what safeguards we have built into our supply chains.

The Group's ISO 27001 certification* is a powerful step in achieving this and will also facilitate information requests made by you to us, as we provide swift and detailed responses when required.

 

* The scope of our current ISO 27001 certification is limited to the services that operate from our Houghton le Spring and Bolton offices. The Bolton operations in scope consist of: Premex Services, Premex +, 3d Rehabilitation and ExamWorks Investigation Services