OwnBackup, Inc. achieved 2 internationally recognized ISO certifications, including information security management standard ISO/IEC 27001:2013 and data privacy controls standard ISO/IEC 27701:2019.
As the first internationally recognized privacy certification, ISO/IEC 27701:2019 is the privacy extension to ISO/IEC 27001:2013, building on the same information security management requirements, controls, and objectives associated with the collection and processing of personally identifiable information (PII) and other types of personal data consistent with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other data privacy requirements.
OwnBackup provides secure, automated, daily backups of SaaS and platform-a-service data, as well as data, compare and restore tools for DR.
By meeting these critical security and privacy assurance standards, it demonstrates it is putting the safeguards in place to reduce identified risks and provide greater overall information security and privacy protection for its customers.
“Achieving ISO 27001:2013 and ISO 27701:2019 certifications are critical milestones as they demonstrate our ongoing commitment to upholding the highest possible security and privacy standards,” said Travis Howe, CISO. “More than 3,000 customers entrust us with their data. We are proud to share this significant accomplishment with them.“
Sam Gutmann, CEO, added: “As a company, we are committed to building a strong culture of security and privacy across all aspects of our business. The ISO frameworks emphasize continuous improvement, which aligns well with our passion for keeping pace with an ever-changing threat landscape to ensure the protection of our customers’ data.“
Additionally, OwnBackup maintains a SOC 2 Type II compliance program, provides HIPAA and SEC 17a-4 compliant eligible services, and documents security controls on the Cloud Security Alliance’s Security, Trust & Assurance Registry.