Information is now globally accepted as being a vital asset for most organisations and businesses. As such, Stockton-based Intasite says it’s aware that the confidentiality, integrity, and availability of vital data – like other important business assets – is essential
to clients, and needs to be suitably protected.
As a leading provider of induction and contractor management software for high hazard environments, the tech platform manages an extensive amount of data to facilitate safe access to some of the most secure sites across the globe.
Intasite commercial director Danielle Croce explained: “In 2021 we made the commercial decision to work towards BS EN ISO 27001, an internationally recognised standard which provides the framework for an effective Information Security Management System (ISMS).
“It sets out the policies and procedures needed to protect Intasite and our clients, and includes all the risk controls – legal, physical and technical – necessary for robust IT security management.
“Our management system covers much more than just IT. “An important part of our ISMS concerns data security across all areas of our business; whether it is online or offline.
“It includes the application of resources to enable us to achieve our business and security objectives and allows us to protect information assets whilst maintaining and enhancing our legal compliance.”
After starting its BS EN ISO 27001 journey, Intasite critiqued its business processes, and it became apparent it was adopting a systematic approach towards managing operational risks. As such, Intasite implemented process improvements which are fundamental aspects of the quality management system standard BS EN ISO 9001.
Technical director Andy Murphy said: “Consequently, we embarked on the implementation of an integrated quality and security management system, and after being subjected to a suite of audits, we were successfully recommended for certification.
“In today’s competitive business market, we wanted to give our clients the reassurance that our processes and procedures have been independently verified by a UKAS certified assessment body.
“Using a UKAS-accredited certification body such as LRQA sends out a strong message that Intasite is serious about the markets we operate in, and we will not compromise integrity to enhance our professional reputation.
“In many respects, working with a UKAS-accredited certification body, who themselves are subjected to regular assessments, adds another layer of excellence to the achievement of our ISO standards.
“We often undergo comprehensive security assessments when signing with a new client, and by having the two certifications in place we can already see the greater confidence that customers are having in our business. It’s such an important quality to our organisation and it’s already helping us win further blue chip companies.”
Intasite worked in partnership with business consultant Paula Willoughby, from
Middlesbrough firm NVQA, to successfully complete the certifications.
“Anyone who has been responsible for achieving one ISO standard, let alone two simultaneously, will be aware of the hard work and effort involved,” said Paula.
“Gaining two ISO certifications in a short period of time was not easy, but it demonstrates to Intasite’s clients that they’re passionate and committed to providing robust security, ongoing risk management, and protecting client information.
“Not only do their ISO 9001 and ISO 27001 certifications help demonstrate good practices, they help Intasite to continually improve their internal processes and ensure they’re responding and meeting the ever-changing needs of their clients, while demonstrating that they operate to the highest global standards of business excellence.”