Security is core to our business
As an innovative global SaaS company, Benifex has had a robust security focus since day one.
Benifex prioritises your security
At Benifex, we take information security and data protection seriously. We are proud to be one of few organizations certified according to ISO/IEC 27001 for information security management systems, ISO/IEC 27018 for the protection of personal data in public clouds and ISO/IEC 27701 for privacy information management systems.
Benifex SOC 2 (type Il) examination and report demonstrates organization’s commitment to established security best practices to assess and report on the security, availability, processing integrity, confidentiality, and privacy of customer data.
To get a better understanding of our approach towards information security and data protection, you can download our security whitepaper, ISO certificates and Consensus Assessments Initiative Questionnaire (CAIQ) via our participation in the CSA STAR program.
Information security is of great importance to Benifex and a core part of our business. You trust Benifex to process your information, which means that we have a great responsibility in ensuring that the information is processed securely and according to all applicable laws and regulations. This is something we take most seriously! With this whitepaper we hope to provide you and your organization with an overview of our information security and data protection program.
Joakim Alm
Benifex
Our ISO certificates
Download our security whitepaper, certificates and self-assessments etc.
Benifex is ISO 27001 certified as a part of our Information security compliance program. The purpose of ISO/IEC 27001 is the development, implementation and continuous improvement of an Information Security Management System (ISMS).
Benifex is ISO 27018 certified as parts of our Cloud security compliance program. ISO/IEC 27018 is a code of practice that focuses on protection of personal data in cloud services and provides additional controls to the (ISMS) applicable to the protection of personal data in public cloud environments.
Benifex is ISO 27701 certified as a part of our GDPR compliance program. The design goal of ISO/IEC 27701 is to enhance the existing (ISMS) with additional requirements in order to establish a Privacy Information Management System (PIMS).
Benifex is ISO 22301 certified as a part of our compliance program. The purpose of ISO 22301 is the development, implementation and continuous improvement of an Business Continuity Management System (BCMS).
Benifex is Cyber Essentials certified: ensuring strong data security and robust protection against common cyber threats. This certification helps customers feel confident that their information is protected by industry-leading security measures.
In this whitepaper, we provide an overview of Benifex’s information security and data protection program.
The CSA Security, Trust & Assurance Registry (STAR) is a free, publicly-accessible registry that documents the security controls provided by various cloud computing offerings. As a result, STAR helps customers assess the security of cloud providers they are currently using or considering using.
Benifex ISAE3000 SOC 2 type 2 examination report demonstrates our commitment to following security best practice. To achieve independent third-party validation of security controls, Benifex have engaged a world leading accounting firm to produce an Independent Service Auditor Report covering the description of Controls Design for Benifex Product and services. The activity was conducted in accordance with the attestation standard established by International Standards on Assurance Engagements (ISAE) 3000, Assurance Reports on Controls at a Service Organization, issued by the International Auditing and Assurance Standards Board (IAASB). The standard include verification of the common criteria controls along with the trust services criteria relevant to Security, Availability, Confidentiality, and Privacy.
Want to know more about security and data protection?
If you are interested in obtaining more information or materials from Benifex concerning security and data protection, please contact your established customer contact at Benifex.