Big news for all our security-minded users: OceanMD is officially ISO 27001 Certified! While the Ocean Platform was designed to protect privacy and security from Day 1, earning ISO certification confirms our approach and demonstrates our commitment to maintaining the highest international standards. Continue reading to learn more about the achievement and what’s next for Ocean’s security operations.
What is ISO 27001?
ISO 27001 is an international standard for systems that hold sensitive information (such as the Ocean Platform). There are 193 security controls across facets like general security, business continuity plans, disaster recovery, organization-wide policies, risk assessment, and employee awareness.
This certification can be seen as a “badge” of recognition, given by an independent organization, similar in scrutiny to how Health Canada or other regulatory bodies approve products and policies. As such, we are very proud of our ISO 27001 certification which stands as a testament to our commitment to the security, confidentiality, and availability of our services.
What does this mean for Ocean users?
To put it bluntly: Nothing! As a valued Ocean user, you can rest assured knowing any sensitive information passing through Ocean will remain safe as it always has with no changes to your current experience. Achieving this certification is a rigorous process and requires continuous improvement, ongoing review, and active engagement with global industry best practices.
As we continue to monitor and improve our security processes, we may implement different things like internal practices among our team or upgrade our capabilities with better technology and server infrastructure. But in short, if we’re doing our jobs right, you won’t notice a thing.
Where can I go to learn more?
If you’re interested in learning more about how we handle security and privacy, come check out our new Security page. Here, you’ll find key aspects of our commitment to the highest security standards, links for important security contacts, and technical documentation.
For individuals who eat, sleep, and breathe all things security, we also recently launched the OceanMD Trust Centre. This hub will be used to store and share critical privacy and security policies, reports and information with necessary parties. You’ll also be able to see what’s next for Ocean security, like ISO 270017 and ISO 270018 certification, and SOC 2 compliance.
