W2 is proud to announce that – after a lot of hard work from all areas of the business – we are officially certified to the ISO 27001:2013 Information Security standard. Over recent years, our clients have become accustomed to regular briefings on our ongoing GDPR, Information Security and Cyber-Security program so the granting of …
With the ‘dress rehearsal’ stage 1 ISO 27001:2013 audit behind you, stage 2 is upon you all too quickly. Following the stage 1 audit, you may still have further work to do. If the auditor found any major or minor non-conformances, observations or opportunities for improvement – you must have put a corrective action plan …
In the modern world of software development, it is simply not enough to build the best product, service or offering on the market. Mindful of the fines and sanctions outlined within the EU GDPR, and ‘leaks’ of Personal Identifiable Information (PII) continuing to dominate the news headlines, all companies now need to have a highly …
Sitting through the Stage 1 of a ISO 27001 certification audit is pretty daunting; even as a seasoned Information Security Management (ISM) professional. Although often referred to as a ‘documentation review’ or ‘Desktop audit’, the auditor is there to review your documentation to establish whether your ‘Information Security Management System’ (ISMS) meets the requirements of …
So, you’ve received and then – maybe, more formally – recognised a Data Subject Access Request (DSAR). DSAR Forms & Identity Checking As the Data Protection Officer (DPO) of your organisation, you should verify the identity of the requester to ensure they are dealing with the correct person and therefore lessen the risk of a …
