ONI becomes first UK firm to be recommended for new GDPR certification

Following our initial breaking news on 07 February 2018, ONI is delighted to officially announce it is the first organisation to be recommended for certification under the new Data Protection Standard, BS10012: 2017 by Certification body Alcumus ISOQAR Ltd.

The previous version of the standard reflected the Data Protection Act but it has been fully revised to align with the GDPR legislation which comes into effect in May this year.  The Certification body, Alcumus ISOQAR Ltd has confirmed that ONI has met the requirements of the new standard which provides ONI’s customers with the peace of mind that ONI is recognised as being GDPR compliant.

The Standard sets out a clear and accountable approach to adopt the best practice requirements for a Personal Information Management System. The framework includes putting in place policies and procedures in areas such as staff awareness, data sharing, disposal, retention, risk assessment and training.

Improved Business Certainty

As a data centre owner and operator, protecting the privacy of customer data is something ONI takes very seriously.  Personal and private data is present in every area of the organisation and customers are right to expect that their data is held securely. This achievement demonstrates through independent third-party verification that ONI are doing so.

Having previously achieved ISO 27001 accreditation for the Tier 3+ data centre operation, embracing BS10012 was a natural progression for ONI. Rather than waiting for this level of compliance to become the norm over time, ONI is leading the industry in maintaining the highest standards of accountability as early as possible. Raising the standards for everyone who follows will benefit the industry and is good for its customers.

With ever increasing security and hacking threats, more and more organisations want cast-iron re-assurances that their data is in safe hands. Today, ONI is able to demonstrate its commitment to protecting client data and business information.

Better Operations & Services

From an operational perspective, ONI’s reputation relies on delivering best practices and the highest levels of change control and information governance being applied across the company. As a service provider that is wholly UK based and able to ensure UK data sovereignty, these new processes add another strong layer of confidence to ONI’s customers.

Richer Customer Experiences

Customer expectations continue to shift upwards. Both new and existing customers want reassurance that their supply chain is GDPR compliant. ONI provides managed services for business critical infrastructure that is deployed both on-premises and in the Cloud. When it comes to data protection and compliance, organisations are looking to ONI to lead by example. Having third-party recognition on top of the GDPR statutory requirements goes a long way to demonstrate ONI’s commitment to protect customer information.

A final word…

Richard Smith, Finance Director and company Data Compliance Officer:

We see the GDPR legislation as an opportunity to improve business procedures which adds peace of mind and value to customers.  Our customers are looking for partners with demonstrable compliance processes. Being the first oganisation to be certified under the new Data Protection Standard provides the right assurance across ONI’s full service and solution propositions.

This achievement demonstrates how we have put in place and operate very robust data protection processes. In the lead up to and beyond the implementation of GDPR we see huge benefits in being a leader in data protection compliance.

All our staff have a far deeper understanding around the processes and purpose of customer data protection.  Our rigorous approach to new or changed processes also means that we can rapidly identify risks to personal information and act more efficiently to address and remove them. Collectively we are now far more aware of and informed about the legislative changes and their impact on businesses.

If you want the security and confidence of meeting or exceeding GDPR compliance, you need to seek out partners who can evidence their compliance with BS100012:2017.  If you’d like to know more about our data centre operation, our Business Assured approach, or arrange a personal tour of our data centre to see our operation for yourself, contact us at getintouch@oni.co.uk.