Security & Compliance
Listen, technology in the resort industry isn’t perfect. But that lack of perfection is no excuse for ecommerce and marketing vendors to take a lazy attitude toward information security.
It’s why we have put in the time, effort, and rigor to become ISO 27001 certified.
Are we PCI Level 1 compliant? Of course. But PCI compliance is both less comprehensive than ISO 27001 and doesn’t require the same rigorous, 3rd party verification. Even more, ISO 27001 is ongoing; you don’t just check the boxes and move on, you must keep checking those boxes to keep your ISO 27001 certification.
So when we wanted to prove to our clients just how seriously we take data security, we took the time – a year and a half, in fact – to complete all 11 charters and 114 controls that are part of the certification process.
But we also have an in-house Security Engineer. This role and similar roles before are the ones who spent 18 months helping us achieve ISO 27001 compliance and works tirelessly to ensure we remain vigilant as a company.
Here’s what that director said about the company and that certification.
To read full interview about ISO 27001 certification, click the link below:
https://corp.inntopia.com/iso-27001-interview-njama-braasch/