Grace Information Management Blog

Six Grace Records Management branches achieved certification this week for Information Security Management Systems (ISO 27001:2006).

Perth, Adelaide, Melbourne, Canberra, Sydney and Brisbane all met the strict criteria for this internationally recognised standard following assessment from an independent and accredited agency.

The ISO 27001 ensures:

  • Security requirements and objectives are properly formulated
  • Security risks are managed in a cost efficient way
  • Compliance is with laws and regulations
  • A proper framework for the implementation and management of controls to ensure the security objectives of the organisation are met
  • Compliance with the policies, directives and standards of the organisation
  • Information security for customers.

The certification is the fourth for the company this year, which was also recently granted certification for the Payment Card Industry Data Security Standard. The aim of this Standard is to increase controls around cardholder data to reduce credit card fraud by creating a framework of specifications, tools, measurements and support resources to help businesses ensure the safe handling of cardholder information at every step.

In addition, recertification was also attained for (OHS) AS/NZS 4801:2001 and OHSAS 18001:2007 as well as Environment 14001:2004 on a national basis.

These new certifications add to Grace Records Management’s other certifications of:

  • Quality ISO 9001:2008
  • (PRISM) Professional Records & Information Services Management Privacy (2013)
  • (NHVAS) National Heavy Vehicle Accreditation Scheme (2013).

More than just a piece of paper, these certifications confirm Grace Records Management’s ongoing commitment to providing a high quality and secure service to our customers.