At IDBS, we know that our customers rely on us to keep their most important asset – their data – safe.
We take information security seriously at IDBS – and we’d like you to be confident that your data is secure with us.
We understand that the ongoing assurance of our internal working practices and controls is essential both when considering IDBS as a supplier and for the entire period in which you use our products and services. Whether you choose to use our cloud-based services or use our products on your own infrastructure, IDBS’s compliance in this area is pivotal.
IDBS has a long track record in operating to internationally recognized standards to ensure our products and services meet and exceed our customers’ needs and expectations, and we continually look to develop this as those needs and expectations evolve.
The first Electronic Lab Notebook provider to achieve SOC 2 compliance
Further to our existing ISO 9001 and ISO 27001 certifications, IDBS has this year successfully completed a SOC 2 audit, resulting in a type I audit report. This achievement demonstrates our ongoing commitment to continue to meet the rigorous and evolving demands of information security.
The IDBS SaaS Platform
What SOC 2 means for IDBS customers
By achieving SOC 2 compliance, we ensure that our information security measures are in line with industry-wide standards and expectations regarding information security – giving our customers confidence in the robust controls we have established.
SOC 2 requires service organizations to establish and follow strict information security policies, procedures and controls encompassing the security, availability, and confidentiality of customer data.
The audit was undertaken by CyberGuard Compliance, LLC to the American Institute of Certified Public Accountants’ (AICPA) Trust Services Criteria, and showed that IDBS has established a framework for internal controls that facilitates accountability and a commitment to security.
The IDBS framework enables operating effectiveness, increased efficiencies and reduced costs, which translates into a platform that is safe, secure, and adds value, while helping to build increased trust and transparency with customers.
A copy of IDBS’s SOC 2 type I report is available for customers subject to suitable confidentiality arrangements. For more information please contact your Account Manager or Customer Success Manager.
IDBS is ISO 9001, 27001 and TickITplus certified
The management systems cover quality (ISO 9001) and information security (ISO 27001).
TickITplus lays out requirements for the IT sector that supplements standards such as ISO 9001 and ISO 27001. While ISO 9001 is a generic standard for any business, TickITplus assures, for example, that IDBS process outcomes comply with those expected of a business providing software products and services.
The scope of our certifications include our principal development centers in Guildford, UK and Portland, Maine that embrace the E-WorkBook and ActivityBase product sets. It also includes all corporate data management and IT systems. Importantly, it includes the provision of our cloud-based (SaaS) solutions and Software Development Lifecycle, including secure software development. All 114 controls of ISO 27001 Annex A are implemented as drawn out in the company’s statement of applicability.
ISO 9001 Certificate number: 70496-2010-AQ-GBR-UKAS
ISO 27001 Certificate number: 209553-2016-AIS-GBR-UKAS
TickITplus Certificate number: 150143-2014-AQ-GBR-UKAS