Certifications

At IDBS, we know that our customers rely on us to keep their most important asset – their data – safe.

We take information security seriously at IDBS – and we’d like you to be confident that your data is secure with us.

We understand that the ongoing assurance of our internal working practices and controls is essential both when considering IDBS as a supplier and for the entire period in which you use our products and services. Whether you choose to use our cloud-based services or use our products on your own infrastructure, IDBS’s compliance in this area is pivotal.

IDBS has a long track record in operating to internationally recognized standards to ensure our products and services meet and exceed our customers’ needs and expectations, and we continually look to develop this as those needs and expectations evolve.

The first Electronic Lab Notebook provider to achieve SOC 2 compliance

Further to our existing ISO 9001 and ISO 27001 certifications, IDBS has successfully completed a SOC 2 audit, resulting in a type 2 audit report. This achievement demonstrates our ongoing commitment to continue to meet the rigorous and evolving demands of information security.

What SOC 2 and SOC 3 compliance means for IDBS customers

By achieving SOC 2 compliance, we ensure that our information security measures are in line with industry-wide standards and

expectations regarding information security – giving our customers confidence in the robust controls we have established.

SOC 2 requires service organizations to establish and follow strict information security policies, procedures and controls encompassing the security, availability, and confidentiality of customer data.

The audit was undertaken by CyberGuard Compliance, LLC to the American Institute of Certified Public Accountants’ (AICPA) Trust Services Criteria, and showed that IDBS has established a framework for internal controls that facilitates accountability and a commitment to security.

The IDBS framework enables operating effectiveness, increased efficiencies and reduced costs, which translates into a platform that is safe, secure, and adds value, while helping to build increased trust and transparency with customers.

A copy of IDBS’ SOC 2 type 2 report is available for customers subject to suitable confidentiality arrangements. And now, a report of IDBS’ SOC 3 report is also available. For more information please contact your Account Manager or Customer Success Manager.

IDBS is ISO 9001, 27001 and TickITplus certified

The management systems cover quality (ISO 9001) and information security (ISO 27001).

TickITplus lays out requirements for the IT sector that supplements standards such as ISO 9001 and ISO 27001. While ISO 9001 is a generic standard for any business, TickITplus assures, for example, that IDBS process outcomes comply with those expected of a business providing software products and services.

The scope of our certifications include our principal development centers in Woking, UK and Portland, Maine that embrace the E-WorkBook and ActivityBase product sets. It also includes all corporate data management and IT systems. Importantly, it includes the provision of our cloud-based (SaaS) solutions and Software Development Lifecycle, including secure software development. All 114 controls of ISO 27001 Annex A are implemented as drawn out in the company’s statement of applicability.

ISO 9001 Certificate number: 70496-2010-AQ-GBR-UKAS

ISO 27001 Certificate number: 209553-2016-AIS-GBR-UKAS

TickITplus Certificate number: 150143-2014-AQ-GBR-UKAS