Sunday, July 2, 2023
HomeEmail MarketingHow E-mail on Acid Proves Our Dedication to Safety and Privateness

How E-mail on Acid Proves Our Dedication to Safety and Privateness


Padlock with badges for security and privacy compliance


Speaking the speak and strolling the stroll are two very various things. Within the digital world, there aren’t many matters which might be extra vital than safety, privateness, and compliance. They’re not one thing you wish to brag about except you’re really doing what it takes.

E-mail on Acid and InboxReady by Sinch are proud to announce that we’ve taken steps to again up and show our dedication to offering clients with a safe platform that focuses on knowledge privateness, together with GDPR compliance.

How’d we do it? Nice query. It includes some business audits and worldwide certifications that consider our safety applications, processes, and preparedness:

  • ISO 27001 and ISO 27701
  • SOC 2 Sort I audit

Regardless of who you’re employed with, these certifications and audits are an indication of a know-how associate you may belief. To elucidate precisely why, let’s take a better take a look at what goes into getting licensed in addition to passing safety and compliance audits.

What’s ISO 27001?

There’s likelihood you’ve heard of ISO requirements earlier than. The Worldwide Requirements Group is a worldwide, non-governmental group that defines, develops, and publishes all types of requirements.

That would embody sustainability requirements akin to web zero emissions. A reasonably well-known normal is ISO 9001, which certifies high quality administration processes.

ISO 27001 focuses on data safety requirements. We pursued and achieved this certification as a result of it exhibits competence and signifies {that a} dependable data safety program is in place. To be extra particular, ISO 27001 certifies the next:

  • Prospects are being protected and knowledgeable by way of confidentiality, integrity, and the supply of assault knowledge.
  • That our program aligns with greater than 140 controls to determine, examine, and act on potential safety incidents.
  • That annual danger assessments are accomplished to make sure threats are dealt with correctly.

For us to earn an ISO 27001 certification, impartial auditors take a look at our data safety program in opposition to all these controls. Meaning we have to clearly determine dangers, set clear targets on what must be achieved with data safety, and outline the safeguards and mitigation efforts that may deal with the dangers.

Plus, ISO 27001 requires that we present how we recurrently measure our data safety controls and that we’re repeatedly working to enhance safety.

What’s ISO 27701?

ISO 27701 is in the identical household of certifications as ISO 27001. The principle distinction is that an ISO 27701 certification provides knowledge privateness into the combination together with data safety. An vital purpose for that is to guage controls associated to the European Union’s Basic Knowledge Safety Regulation (GDPR).

Whereas ISO 27701 just isn’t a literal GDPR certification, it does present that E-mail on Acid and InboxReady have a privateness program in place that meets related necessities to the regulation – and that we’re regularly working to enhance knowledge privateness.

Knowledge privateness is essential on the planet of e-mail. As a buyer or person, not solely would you like your personally identifiable data (PII) protected, however you additionally want to guard the information of your clients and subscribers. That features their e-mail addresses.

Dan Ross leads the staff liable for a lot of this and works instantly with the auditors. He understands why GDPR is such an enormous deal to e-mail senders.

“GDPR is understood by most to be probably the most complete privateness regulation on the planet. Our merchandise abide by this privateness regulation, and mixed with our ISO 27701, Privateness Coverage, and Knowledge Processing Settlement, our clients can make sure that their knowledge is handled appropriately.”

~ Dan Ross, Sr. Supervisor, Governance, Threat, and Compliance (GRC)

Though GDPR solely applies to the non-public knowledge of EU residents, all Sinch E-mail manufacturers deal with knowledge the identical approach. This implies everyone seems to be protected, and it helps put together our platforms and our clients for future laws, such because the proposed American Knowledge Privateness and Safety Act (ADPPA).

The ISO 27701 certification is vital as a result of, as an e-mail sender, you might want to discover GDPR-compliant know-how companions. That is the proof.

What’s a SOC 2 Sort I audit?

The phrase “audit” by no means actually seems like enjoyable, does it? Dan Ross can verify that, when our manufacturers bear these audits, it will get intense and includes some very lengthy days.

A SOC 2 Sort I audit occurs yearly. It’s a extremely regulated audit, which ends up in a report that gives an expert opinion on the effectiveness of round 400 controls. (That’s lots.) With SOC 2 Sort I, auditors rigorously take a look at these operational, safety, availability, and confidentiality controls at a particular cut-off date.

There may be additionally a SOC 2 Sort II report, which follows the identical controls, however takes place over a 12-month interval moderately than one cut-off date. Our sister manufacturers, Mailgun and Mailjet, have already handed the SOC 2 Sort II audit. In 2023, we’re working to realize this for all Sinch E-mail merchandise, together with E-mail on Acid and InboxReady.

Throughout a SOC 2 audit, the impartial auditors will take a look at issues akin to whether or not we’ve supplied cybersecurity coaching to our workers. They’ll additionally discover out if we’re testing product code adjustments for safety vulnerabilities earlier than we push them reside to our platforms.

What does all this imply to you?

Cybersecurity and knowledge privateness compliance can get sophisticated – and actually – a little bit bit scary too. We pursue these experiences and certifications and make them accessible as a result of we wish our clients to have peace of thoughts.

While you work with E-mail on Acid, InboxReady, or any of the Sinch E-mail options, you may relaxation straightforward and know which you could belief us. We don’t simply inform clients and prospects that we’re safe and compliant. We get our applications examined so that you could be assured we imply what we are saying.

In the event you’d prefer to study extra about our ISO certifications or the outcomes of our SOC 2 Sort I audit, you may request and obtain documentation on the Mailgun Safety Portal. There, you’ll discover a ton of knowledge that could possibly be particularly useful for these evaluating us as a possible know-how associate.

Discover out extra about e-mail safety

Inquisitive about studying extra about cybersecurity and e-mail? Our pals and colleagues at Mailgun by Sinch revealed a complete information you may obtain free of charge. You’ll uncover:

  • How the e-mail risk panorama is continually altering and the way it impacts your organization.
  • Recommendation on easy methods to adjust to privateness rules akin to GDPR, HIPAA, and the CCPA.
  • Why e-mail authentication is essential to defending your subscribers and your model.
  • Steerage on selecting know-how companions who take safety and privateness critically.

Head over to Mailgun.com and get your copy of The Mailgun information to e-mail safety and compliance.

Creator: The E-mail on Acid Group

The E-mail on Acid content material staff is made up of digital entrepreneurs, content material creators, and straight-up e-mail geeks.

Join with us on LinkedIn, comply with us on Fb, and tweet at @EmailonAcid on Twitter for extra candy stuff and nice convos on e-mail advertising and marketing.

Creator: The E-mail on Acid Group

The E-mail on Acid content material staff is made up of digital entrepreneurs, content material creators, and straight-up e-mail geeks.

Join with us on LinkedIn, comply with us on Fb, and tweet at @EmailonAcid on Twitter for extra candy stuff and nice convos on e-mail advertising and marketing.



RELATED ARTICLES

LEAVE A REPLY

Please enter your comment!
Please enter your name here

- Advertisment -
Google search engine

Most Popular

Recent Comments