At OnePlan, we prioritize security and privacy as cornerstones of our commitment to delivering innovative, reliable solutions for our customers. Today, we are proud to announce that OnePlan has achieved two critical certifications: ISO 27001 and ISO 27701, in addition to our existing SOC 2 Type II certification. These certifications demonstrate our rigorous approach to data protection, risk management, and privacy compliance, underscoring our dedication to keeping customer data safe and secure. 

What Do These Certifications Mean?

ISO 27001: Information Security Management
ISO 27001 is an internationally recognized standard that outlines best practices for establishing and maintaining an Information Security Management System (ISMS). Achieving ISO 27001 certification signals that OnePlan has implemented a robust framework for identifying, managing, and reducing risks related to data security. This certification confirms that we have a systematic, risk-based approach to managing sensitive information, safeguarding it from unauthorized access, corruption, or loss. 

ISO 27701: Privacy Information Management
ISO 27701 builds upon ISO 27001 by introducing requirements specific to Privacy Information Management Systems (PIMS). This certification demonstrates OnePlan’s commitment to privacy management, particularly with Personally Identifiable Information (PII). As data privacy regulations like GDPR and CCPA become more prevalent, ISO 27701 enables us to align with these standards, ensuring that PII is handled responsibly, securely, and transparently. 

SOC 2 Type II: Trust Services Criteria
SOC 2 Type II is a widely recognized auditing standard developed by the American Institute of CPAs (AICPA). It assesses an organization’s systems based on security, availability, processing integrity, confidentiality, and privacy over a defined period. SOC 2 Type II certification indicates that OnePlan’s systems and controls meet stringent security requirements, providing customers with peace of mind that their data is protected continuously, even as our company evolves and grows. 

Why These Certifications Matter to Our Customers

Achieving ISO 27001, ISO 27701, and SOC 2 Type II certifications underscores OnePlan’s commitment to upholding the highest security and privacy standards in the industry. Here’s how these certifications benefit our customers: 

  1. Enhanced Security and Privacy Controls: With ISO 27001 and ISO 27701, we have implemented extensive security controls and privacy practices to safeguard sensitive information. SOC 2 Type II further reinforces our commitment to data protection, ensuring consistent protection for your data. 
  2. Regulatory Compliance: In today’s regulatory environment, compliance is essential. These certifications show our alignment with international security and privacy regulations, making it easier for our customers to meet their own compliance requirements when using OnePlan’s services. 
  3. Continuous Improvement: These certifications are not a one-time achievement but part of an ongoing process. We continually monitor, audit, and improve our security and privacy practices to stay ahead of potential risks and evolving regulatory landscapes. 
  4. Greater Trust and Transparency: Earning these certifications means OnePlan adheres to industry-leading practices for data protection and privacy. We are dedicated to providing our customers with clear, transparent information about how we protect their data. 

The Path to Certification
Achieving these certifications required significant effort, investment, and a company-wide commitment to excellence. Each certification involved a detailed audit and rigorous testing of our processes, systems, and controls. Our journey to achieve ISO 27001, ISO 27701, and SOC 2 Type II demonstrates our proactive approach to addressing security and privacy risks and our dedication to building a resilient and secure environment for all our customers. 

Looking Forward
Achieving these certifications is a significant milestone, but we know that the journey to excellence in security and privacy is ongoing. With these achievements, we strengthen our promise to provide trusted, reliable solutions that empower our customers to focus on what they do best, knowing that their data is in safe hands with OnePlan. You can view our official certifications and reports at https://trust.oneplan.ai/