DocBuddy takes threats to the availability, integrity, and confidentiality of our clients' information seriously. As such, DocBuddy is an ISO/IEC 27001:2013 certified provider whose Information Security Management System (ISMS) has received third-party accreditation from the International Standards Organization.ISO/IEC 27001:2013 is an information security management system standard published in October 2013 by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).A-LIGN, an independent, third-party auditor, found DocBuddy to have technical controls in place and formalized IT Security policies and procedures. A-LIGN is an ISO / IEC 27001 certification body accredited by the ANSI National Accreditation Board (ANAB) to perform ISMS 27001 certifications. DocBuddy has implemented several security measures and countermeasures that protect it from unauthorized access or compromise and IT personnel were found to be conscientious and knowledgeable in best practices.
Compliance with this internationally recognized standard confirms that DocBuddy’s security management program is comprehensive and follows leading practices. The scope of our ISO/IEC 27001:2013 certification includes but isn’t necessarily limited to the management of information and security as applied to DocBuddy’s SaaS product, services, processes, technology, and assets including all supporting operations and organizational units.
This certification demonstrates DocBuddy’s continued commitment to information security at every level and ensures you that the security of your data and information has been addressed, implemented, and properly controlled in all areas of our organization.
For more information please contact security@docbuddy.com.