A closer look at what our certifications mean to you and your customers
Deepak Singh
Mar 15, 2024
In today’s Software as a Service (SaaS) environment, where cloud storage is the norm, concerns about data security and privacy have become more prominent. Safeguarding sensitive information is crucial, and Tekion takes this responsibility seriously. We take pride in our transparency regarding our security compliance and provide all relevant information on our Trust Portal.
Taking that vision to the next level, we’re excited to announce that we recently obtained International Organization for Standardization (ISO) 27001 and 27701 certifications for our Automotive Retail Cloud (ARC) and Automotive Enterprise Cloud (AEC) platforms. We’re proud to be the only leading DMS provider awarded these certifications. The ISO introduced the 27001 and ISO 27701 frameworks, providing a cybersecurity and privacy foundation for businesses. One key way we prioritize data protection is by implementing an Information Security Management System (ISMS) following ISO 27001 and a Privacy Information Management System (PIMS) based on ISO 27701 standards.
At Tekion, our main goal is to keep our customers' and users' data safe. We've invested in the right resources and controls to ensure top-notch protection and service. Our focus revolves around creating and enhancing controls, managing the Tekion security framework, and providing a robust support system for effective compliance and risk management.
Tekion's framework is built on the ISMS and PIMS. This framework enables everyone to follow policies consistently and impartially. We've implemented procedures and controls at all levels to protect information confidentiality and integrity, ensuring that access is granted only to authorized individuals when needed.
Simply put, ISMS and PIMS are frameworks that include policies and procedures for managing organizational information risks, covering legal, physical, and technical controls, as well as data privacy. Tekion is fully committed to upholding data subjects' rights under applicable data protection laws and ensuring the careful handling of their personal data. Your data's safety is our priority.
FAQs:
Why are ISO/IEC 27001 and ISO/IEC 27701:2019 certifications important?
Compliance with ISO/IEC 27001 & ISO/IEC 27701:2019, certified by an accredited auditor, demonstrates that Tekion uses internationally recognized processes and best practices to manage the infrastructure and organization that support and deliver its services. The certificate validates that Tekion has implemented the guidelines and general principles for implementing, maintaining, and improving the management of information security and privacy.
How can I get the Tekion ISO/IEC 27001 and ISO 27701 audit documentation?
Please send us an email to compliance@tekion.com or request our certificates through our Trust Portal.
Who is the third-party independent assessor?
British Standards Institution (BSI), an ISO certification body accredited by ANSI National Accreditation Board (ANAB) and a member of the International Accreditation Forum (IAF). Certificates issued by BSI are recognized as valid certificates in all countries with an IAF membership. You may validate the certificates on BSI portal by clicking on the link.
How do Tekion’s ISO certifications help its customers?
The ISO 27001 and ISO 27701 certifications are a way to validate Tekion’s security and privacy compliance posture and ensure that high quality and trustworthy Information Security and data privacy practices are in place.
Does Tekion monitor and audit the ISO ISMS & PIMS frameworks frequently?
Yes. Tekion conducts internal and external audits on an annual basis scoping ISO/IEC 27001:2022 and ISO/IEC 27701:2019 frameworks. The continued monitoring process makes it easier to detect potential weak spots and stop breaches before they affect the business.