PaySpace, a true cloud-based HR and Payroll solution, has received the International ISO (International Organisation for Standardisation) 27001 certification for security and data protection – the first Human Capital Management and Payroll Software service provider in Africa to do so.
The ISO/IEC 27001 accreditation is a bespoke specification for information security management systems (ISMS) which are built off a framework of policies and procedures that include all legal, physical and technical controls involved in an organisation’s information risk management process.
The certification means PaySpace has achieved a level of security certification that is recognised globally and is the only African-based true Cloud solution to do so.
“By achieving our ISO 27001 certification, we have set the benchmark locally and across the African continent for a true cloud based Payroll and HR solution,” says Warren van Wyk of PaySpace.
He added, “For companies who have previously been concerned about changing HR and payroll software solutions due to online security concerns or various global data protection acts, the ISO certification assures users that the highest level of security methods and processes – internationally, are protecting their data.”
The ISO 27001 certification is a dynamic process that is subjected to annual surveillance audits and full recertification every three years.
Before the ISO 27001 certification can be awarded to any organization, such organization must have undergone a process and met all necessary requirements.
The review process required the organization to undergo an intensive six month auditing process by an independent auditing firm before having to pass a phase one audit by the SABS (South African Bureau of Standards).
The organization’s submission required them to successfully measure against all seven of the core areas of operation namely; Context of the Organisation, Leadership, Planning, Support, Operation, Performance Evaluation and Improvement.
Phase Two required a comprehensive end-to-end audit by the SABS against the seven core areas plus the 12 areas of system controls the organisation is required to have in place, which include (among others); Risk Assessment, Security Policy, Asset Management, Incident Management, Compliance and Business Continuity Management.
PaySpace met all these requirements plus all necessary evaluating documentation received and approved, before it could be awarded with the ISO 27001 certification.
“The ISO accreditation means we have delivered on a set amount of comprehensive information security control objectives that are independent, reasoned choices, formulated and signed off by more than 170 countries,” Warren van Wyk concluded.
The ISO 27001 certification is a testament to PaySpace’s commitment to safe and secure protection of data. The company was awarded the Frost and Sullivan 2015 South Africa award for Product Leadership of the Year for Enterprise Resource Planning Systems.
PaySpace, established in 2000, has proven itself to be a leader in the online Payroll and HR solutions across Africa. It operates an integrated, real-time offering which unifies payroll and Human Capital Management (HCM) across 37 African countries.