Security is core part to our business
As an innovative global SaaS company, Benify has had a robust security focus since day one.
Benify prioritizes your security
At Benify, we take information security and data protection seriously. We are proud to be one of few organizations certified according to ISO/IEC 27001 for information security management systems, ISO/IEC 27018 for the protection of personal data in public clouds and ISO/IEC 27701 for privacy information management systems.
Benify SOC 2 (type Il) examination and report demonstrates organization’s commitment to established security best practices to assess and report on the security, availability, processing integrity, confidentiality, and privacy of customer data.
To get a better understanding of our approach towards information security and data protection, you can download our security whitepaper, ISO certificates and Consensus Assessments Initiative Questionnaire (CAIQ) via our participation in the CSA STAR program.
Information security is of great importance to Benify and a core part of our business. You trust Benify to process your information, which means that we have a great responsibility in ensuring that the information is processed securely and according to all applicable laws and regulations. This is something we take most seriously! With this white paper we hope to provide you and your organization with an overview of our information security and data protection program.
Joakim Alm
Our ISO certificates
Download our security whitepaper, certificates and self-assessments etc.
Benify is ISO 27001 certified as a part of our Information security compliance program. The purpose of ISO/IEC 27001 is the development, implementation and continuous improvement of an Information Security Management System (ISMS).
Benify is ISO 27018 certified as parts of our Cloud security compliance program. ISO/IEC 27018 is a code of practice that focuses on protection of personal data in cloud services and provides additional controls to the (ISMS) applicable to the protection of personal data in public cloud environments.
Benify is ISO 27701 certified as a part of our GDPR compliance program. The design goal of ISO/IEC 27701 is to enhance the existing (ISMS) with additional requirements in order to establish a Privacy Information Management System (PIMS).
Benify is ISO 22301 certified as a part of our compliance program. The purpose of ISO 22301 is the development, implementation and continuous improvement of an Business Continuity Management System (BCMS).
In this whitepaper, we provide an overview of Benify’s information security and data protection program.
The CSA Security, Trust & Assurance Registry (STAR) is a free, publicly-accessible registry that documents the security controls provided by various cloud computing offerings. As a result, STAR helps customers assess the security of cloud providers they are currently using or considering using.
Benify ISAE3000 SOC 2 type 2 examination report demonstrates our commitment to following security best practice. To achieve independent third party validation of security controls, Benify have engaged a world leading accounting firm to produce an Independent Service Auditor Report covering the description of Controls Design for Benify Product and services. The activity was conducted in accordance with attestation standard established by international Standards on Assurance Engagements (ISAE) 3000, Assurance Reports on Controls at a Service Organization, issued by the International Auditing and Assurance Standards Board (IAASB). The standard include verification of the common criteria controls along with the trust services criteria relevant to Security, Availability, Confidentiality and Privacy
Want to know more about security and data protection?
If you are interested in obtaining more information or materials from Benify concerning security and data protection, please contact your established customer contact at Benify.