In December 2005, 2sms was certified as complying with the standard BS 7799-2:2002,
and ISO 27001:2005.
to see our certification. Quoting this Certificate ID: GB05/66853
The benefits customers will receive from 2sms's commitment to ISO 27001:2005 are:
2sms strives to ensure customers receive a quality service, through the implementation
of the standard, 2sms have added several enhancements to our service to improve
the customer experience. These improvements include:
- New message sending software has been written, meaning customer messages are processed
quicker and we consistently our-perform our SLA.
- The security of customer data is continually assessed and enhancements implemented
to improve the customer experience.
- Global reach - 2sms connects to multiple carriers and aggregators to provide extensive
global coverage and multiple contingency routes for message delivery.
2sms now requires all customers to use Strong passwords and there is an option for
an additional layer of security through the use of PIN access.
As part of the ISO process we have installed our servers within a secure data warehouse
located in the USA with two failover sites located in the UK.
Resilience - 2sms is rare in having failover contingency globally for our message
sending providers through more than one company. We have observed that no one message
sending provider has 100% connection and this is something our customers no longer
need to be concerned with.
Continuous improvement - as part of the ISO process, 2sms now discuss potential
improvements to all areas of our service on a weekly basis, this includes the discussion
of suggestions provided by customers and enhancements put forward by our customer
support and IT Departments.
ISO 27001:2005 is an information Security certification. Information security defines
information as an asset, which adds value to an organisation consequently needs
to be suitably protected. It can be printed or written on paper, stored electronically,transmitted
by post or using electronic means, shown on films, or spoken in conversation.
Information security protects information from a wide range of threats in order
to ensure business continuity, minimise business damage and maximise return on investments
and business opportunities.
Information security is achieved by implementing a suitable set of controls, which
could be policies, practices, procedures, organizational structures and software
functions. These controls need to be established to ensure the specific security
objectives of the organization are met.