Zoho CRM | September 30, 2019, By Max Tyack.
Zoho products (SaaS applications) have been awarded ISO 27018 Certification. Zoho’s practices were vetted by an independent third-party auditing firm to help Zoho in ensuring that Zoho standards of accountability for data-handling meet the difficult and rigid requirements for ISO.
ISO is an independent, non-governmental international organization with a membership of 164 national standards bodies.
The ISO audit included all of Zoho’s cloud offerings, including its ManageEngine and Site24x7 and all the application software that Zoho operates in the cloud – their Software-as-a-Service (Saas).
The auditors were able to take into account the data that is processed by Zoho in their capacity as a Personally Identifiable Information (PII) Processor (‘Service Data’).
Under the ISO/IEC 27018:2019 code of practices for safeguarding the PII that is processed in a public cloud, there are a number of controls which protect consumers, the customers of Zoho. Here are some key controls:
Note: Mentions of ‘we’, ‘our’, ‘us‘, in this blog refer to Zoho.
These certifications and audit reports are a testament to Zoho’s commitment to industry requirements regarding data-handling accountability. They exemplify why First Direct Corporation chose to sell Zoho products.