News & Announcements
Our Latest Security Advancement: Netlify Achieves ISO 27001
I am extremely pleased to announce that as of July 20, 2022 Netlify is now ISO 27001 certified!
In addition to maintaining our SOC 2 Type 2, Netlify, has now achieved ISO 27001. This achievement further demonstrates our commitment to keeping customer data safe and secure. Establishing and maintaining an Information Security Management System was more than a year long journey for our entire team. We spent that time designing, testing, and operationalizing our Information Security Management System to ensure that customer data would be kept safe and secure in a repeatable manner.
Netlify ISO 27001 journey
In 2018, to build customer trust, we began our compliance journey and achieved SOC 2 Type 1. In 2019 we extended that commitment by achieving SOC 2 Type 2. And now in 2022, not only did we maintain our SOC 2 Type II with zero exceptions, but we've added ISO 27001 to our increasing list of certifications establishing ourselves as the leader in our space when it comes to the safety and security of your data.
Netlify security and building trust
Building customer trust is one of the challenges every cloud service company faces. Receiving third-party attestations like SOC 2 Type 2 and ISO 27001 demonstrates to our customers and prospects the maturity of our information security program through the scrutiny of an independent third-party assessor allowing us to continuously build that trust along the way.
What the Netlify ISO 27001 certification means for our customers
Your data is safe and secure
ISO 27001 provides a model for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an information security management system using a top down, risk-based approach that is technology-neutral.
You can verify our practices
All you need to do is make a request to this email ISO@A-lign.com, with the subject “Request for validation of Netlify ISO 27001 certificate” and they will gladly provide the necessary information. You can view a copy of our ISO 27001 certificate here.
You can trust that we'll maintain these practices.
As part of our adherence to ISO 27001, we will undergo annual audits by an independent third party to maintain these certifications.
What is ISO 27001?
ISO/IEC 27001 is an international standard on how to manage information security. The standard was originally published jointly by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) in 2005, revised in 2013 and updated in Europe in 2017 It details requirements for establishing, implementing, maintaining and continually improving an information security management system (ISMS) so that information assets are increasing secure over time.
How can our customers get a copy of our ISO 27001 certification?
You can get a copy of all of our compliance materials via your sales representative. Please reach out to email@example.com to get your copy today. You can also view a copy of our ISO 27001 certificate here.