Mercans Achieves ISO/IEC 27701:2019 Certification

Strengthening Our Commitment to Privacy and Data Protection

We are proud to announce that Mercans has successfully achieved the prestigious ISO/IEC 27701:2019 Certification, the international standard for Privacy Information Management Systems (PIMS)., marking a significant milestone in our efforts to ensure data privacy and security. This certification, conducted through an independent third-party assessment, validates the robustness of our Privacy Information Management System (PIMS).

ISO/IEC 27701:2019 is an extension of the ISO/IEC 27001 standards for information security management. It provides additional controls and guidelines for processing Personally Identifiable Information (PII) and managing public cloud PIMS requirements. This certification is designed to help organizations comply with data protection regulations, including the EU General Data Protection Regulation (GDPR) and the UK Data Protection Act (DPA).

The ISO/IEC 27701:2019 certification significantly enhances Mercans’ ability to support clients in meeting data privacy and compliance requirements. As a business operating across multiple regions, staying aligned with local and international regulations is crucial. This certification reduces the risk of non-compliance, helping clients avoid costly fines (up to EUR 250k for GDPR violations) and safeguarding their brand. It also provides peace of mind in an increasingly regulated environment, assuring clients that Mercans’ processes are not only up-to-date but error-proof, ensuring 100% compliance with evolving privacy laws.

Achieving this certification confirms that Mercans has established processes for managing personal data (PII) and supports customers in meeting their compliance requirements. It also reinforces Mercans’ ability to align with privacy regulations such as GDPR, the California Consumer Privacy Act (CCPA), and others.

Mercans first achieved ISO/IEC 27001 certification in 2015, which is a prerequisite for ISO/IEC 27701. Building on this foundation, the new certification demonstrates our continuous efforts to maintain a strong PIMS to protect customer data and help them achieve international and local compliance objectives.