The Aperian platform and related web tools are certified to ISO 27001:2022 and ISO 27701:2019  

4_logos_ISO_April_2023.png

What are ISO 27001 and 27701 anyway?

ISO 27001:2022 is an Information Security Standard that is published by the International Organization for Standardization (ISO), the world’s largest developer of voluntary international standards, and the International Electrotechnical Commission (IEC). Based on an all-inclusive, risk-focused standard, it identifies requirements for a comprehensive information security management system and informs organizations on how they should manage and treat information security and also how information security risks should be identified, managed, and treated.

ISO/IEC 27701:2019 is a privacy extension to the ISO/IEC 27001:2022 created specifically to account for existing and evolving privacy regulations, such as the EU’s General Data Protection Regulation (GDPR).

What is the significance of certification?

Certification to the ISO 27001:2022 is evidence that Aperian Global, Inc. has met rigorous international standards in ensuring the Confidentiality, Integrity, and Availability of the Aperian Learning Platform and related tools.

Aperian’s additional certification to ISO 27701:2019 demonstrates our continued commitment to Information Privacy at every level and ensures that the security of our personal data and information has been addressed by proper controls that are implemented in all areas of our organization. This is not just a good business practice in our view, but also ensures our continued objective compliance with international privacy regulations, such as the GDPR.

Continual improvement using the ISO 27001:2022 and 27701:2019 standards benefits every aspect of Aperian's business and continually reaffirms our commitment to:

  • Protecting client data and Personally Identifiable Information
  • Assessing, minimizing, and eliminating risks and vulnerabilities
  • Prioritizing information and privacy security by design
  • Compliance with the highest standard of information and privacy security

Is this really a big deal?

Actually, yes it is. Aperian is the first among our competitors to achieve this level of recognition for our security and privacy stance. To achieve and maintain certification, we prioritize security and privacy from the top down and work continuously on documenting and improving our systems, processes and policies. Our compliance is then extensively reviewed and validated by A-LIGN, an external independent auditing firm and ISO 27001 and 27701 registrar, to whom we have to demonstrate our systematic approach to managing and protecting company and customer data. A-LIGN is an ISO/IEC 27001/27701 certification body accredited by the ANSI-ASQ National Accreditation Board (ANAB) to perform ISO certifications. These certifications run for 3 years at a time and have annual surveillance audits.

What does this mean for you?

As we have demonstrated, we take your data privacy very seriously and will continue to make operational changes that are recommended by emerging and evolving legislation. Please contact us at privacy@aperian.com if you have any additional questions.

Additional security and privacy information can be found on our Privacy Policy.

Download our ISO 27001:2022 Certificate [attachment]

Download our ISO 27701:2019 Certificate [attachment]

Was this article helpful?
20 out of 31 found this helpful