Achieving ISO27001:2005 certification shows that we’re in complete control of our processes and, more importantly, our client data is in safe hands.
Mark Gahagan
Support and Services manager
Scottish software development company – Gael Ltd, developers of the Q-Pulse compliance management solution – celebrated recently after successfully achieving ISO27001:2005 certification. The company had been focussing on implementing an effective Information Security Management System (ISMS) so it could handle sensitive internal and customer data, using their own Q-Pulse system as the framework.
After setting up the system, Gael underwent a thorough audit split into two stages, with all of their prospective ISMS processes coming under scrutiny. And following a successful auditing process Gael were informed they were successful in their ISO27001:2005 certification.
Gael’s successful ISMS was put in place following some excellent work by the company’s Mark Gahagan, Support and Services manager, and Derek Wilson, Quality System Manager. Mark said: “Due to the nature of our business, we need to store and have access to large amounts of both our own and our customers’ data. As a business we therefore felt that it was imperative that we put our customers’ minds at ease by becoming an ISO27001:2005 certified supplier.
“Our customers want to know that, when dealing with us, their information is secure and managed appropriately. By being ISO27001:2005 certified we can easily show we are compliant with the latest standard.”
Gael’s two stage audit was carried out over September and October and to implement their ISMS they used their own Q-Pulse compliance management solution – with impressive results. Q-Pulse helped the company pass their audit with flying colours, becoming just the third company in two decades to record no non-conformances in the process.
Mark added: “To achieve certification, we had to undergo a thorough audit split into two stages. We completed the first part in September before successfully passing the second stage a month later in October with, refreshingly, no non-conformances recorded throughout the entire business. If that wasn’t impressive enough we were also given the news from the auditor that, in all his 20 years’ experience as an auditor, we had become just the third to complete the full auditing process with no non-conformances. This was obviously an outstanding achievement and one that left us immensely proud.”
As Gael’s product and staff numbers continue to swell, ISO27001:2005 certification will ensure that the company’s working practices remain that of a global market leader in compliance management software. And in securing certification with the standard one thing became apparently clear – the success in using the company’s very own Q-Pulse solution.
Mark added: “Achieving ISO27001:2005 certification shows that we’re in complete control of our processes and, more importantly, our client data is in safe hands.
“Apart from gaining certification so convincingly, it was also extremely pleasing to watch our own Q-Pulse solution in action. The software played an integral part in achieving the standard through managing our entire business in our own Gael QA Q-Pulse system.
“Q-Pulse was instrumental and allowed us to easily show our auditors that all of our processes were properly controlled and easily managed, with each module playing a significant part in both the implementation and roll out of our ISMS. All in all, our full ISMS processes were well received by the auditor who was particularly impressed by our Q-Pulse solution.
“ISO27001:2005 shows that we can prove – and continue to prove – that we have complete control of our customers’ information. It also gives our vast customer base peace of mind that their information and data are being looked after properly and securely and, at the same time.”
For further information please contact:
Michele Agnew
Marketing Director
Gael Ltd
+44 (0) 1355 593400
michelea@gaelquality.com