Press releases
30 Mar 2022

novomind receives ISO/IEC 27001 certification: Hamburg-based software company meets information security requirements of globally recognized standard

Independent certification body confirms effectiveness of novomind’s Information Security Management System

The Hamburg-based software company novomind attaches great importance to maintaining information security.  This has now been officially confirmed once again by ISO certification. The certificate of the independent accredited conformity body ESecurity-CERT attests that novomind AG has implemented its Information Security Management System (ISMS) in compliance with the current international standard DIN EN ISO/IEC 27001:2017-06.

SaaS products developed and operated by novomind comply with the highest information security standards
The ISO/IEC 27001 standard, which is recognized worldwide across all industries, provides requirements for establishing, implementing, maintaining and continuously improving a documented ISMS. The aim of the standard is to maximize information security in all areas of a company or organization – from IT security and application security to finance, legal and human resources. At novomind, achieving the information security goals is therefore not just an IT task, but a team effort in which all employees are involved. To this end, all employees are trained and informed regularly and on an ad hoc basis.
The ISO/IEC 27001 certification is further proof that novomind’s ISMS meets all requirements of the international standard, especially for the development and operation of the software-as-a-service (SaaS) products novomind iAGENT, novomind iSHOP, novomind iPIM and novomind iMARKET.

TISAX certification for novomind since 2020
novomind’s ISMS was already developed based on the requirements of the ISO/IEC 27001 standard in the course of the company’s TISAX certification in 2020. TISAX (Trusted Information Security Assessment Exchange) is an internationally recognized information security standard defined by the German automotive industry. Volkswagen AG is one of the companies that rely on novomind as a TISAX-certified innovation partner.

During the implementation of the ISMS, novomind carried out a risk assessment and risk treatment. Security measures in the form of policies, procedures and technical implementations were introduced on this basis. Since then, novomind’s ISMS has continued to grow and is subject to regular reviews as well as internal and external audits.

"novomind sets itself very high security standards. ISO certification does not mark the end of the optimization of our ISMS. Our cyber security team constantly prevents risks and threats, involves all employees and thus continuously drives cyber resilience forward,” explains Stefan Grieben, CEO of novomind AG. “Our customers and partners can therefore rest assured that it will always be our top priority to ensure that all data are protected at the highest possible level.”

novomind offers GDPR-compliant messaging solution for contact centers
Data security has always played a key role in novomind’s solutions. As an official provider of the WhatsApp Business API, novomind has for instance been offering a messaging solution that complies with the European General Data Protection Regulation (GDPR) for use in omni-channel customer service since 2018.