Tools4ever is once again ISO 27001 certified

Baarn, January 27: Tools4ever proudly receives its new ISO 27001 certification. The Identity Governance & Administration specialist was awarded the certification following an audit by the auditing firm Brand Compliance. ISO 27001 is a global information security standard that provides guidelines and requirements for establishing, implementing, maintaining, and continually improving an information security management system (ISMS).

New in the recent audit is that Tools4ever is now certified against the new ISO 27001:2022 version. Previously, we worked with the earlier 2017 version. ISO 27001:2022 has a more streamlined structure, aligns better with the High-Level Structure (HLS) of ISO management systems, includes several new controls, and is therefore better prepared for cloud use and service delivery.

Added value for customers

An ISO 27001 certificate issued by an independent party provides customers with strong assurance. The certification demonstrates that information security at Tools4ever is in order and meets all requirements. This covers the development and maintenance of the Identity Management software as well as business operations and service delivery to customers.

Ron Kuper, Security Manager at Tools4ever: “This is important, because in many cases Tools4ever’s solutions play a central role in our customers’ IT architectures. As a software company, we help secure customers’ sensitive data, and we want to give them objective proof that we have organized this professionally. The ISO 27001 certification shows that our information security is in order and therefore provides assurance to customers. The certification is also often a prerequisite for customers when addressing their own compliance with ISO 27001, NEN 7510, the BIO, the education sector’s standards framework, or other information security standards.”

Part of an overall certification and audit program

At Tools4ever, ISO 27001 certification is part of a broader certification and audit program. Tools4ever has also received a SOC 2 Type II attestation. Such an audit is primarily aimed at cloud service providers and confirms to customers that the quality of the service has been assessed by an independent expert. This assessment covers organizational oversight, vendor management programs, rigorous software development, internal corporate governance, and risk management processes. The SOC 2 audit therefore provides an important complement to the ISO 27001 certification for Tools4ever.

Tools4ever is also OpenID Certified. This certification provides assurances to users regarding the quality and interoperability of the HelloID OpenID Connect implementation. Experts from Deloitte also review the HelloID service twice a year. Ethical hackers from the consultancy firm test the security of the HelloID Identity & Access Management (IAM) solution and attempt to penetrate it. This identifies any potential security weaknesses without creating risks for customers. This elevates Tools4ever’s digital security to an even higher level. Want more information about our ISO 27001 certification or to download the certificate? Click here.

About Tools4ever B.V.

Since 1999, Tools4ever has developed and sold software that is written in the Netherlands. The company serves approximately 800 customers in the Netherlands and about 5,000 worldwide. Its flagship product is HelloID, which automates and streamlines user, authorization, and access management for organizations efficiently and securely. In the Netherlands, the company is the market leader and counts government agencies, healthcare organizations, and schools among its customers.