ISO 27001 certification
DialPhone maintains ISO 27001 certification for its Information Security Management System. Audited annually by an accredited certification body with surveillance audits in between and full recertification every 3 years.
Control domains covered
- A.5 Information security policies
- A.6 Organization of information security
- A.7 Human resource security
- A.8 Asset management
- A.9 Access control
- A.10 Cryptography
- A.11 Physical and environmental security
- A.12 Operations security
- A.13 Communications security
- A.14 System acquisition, development, maintenance
- A.15 Supplier relationships
- A.16 Information security incident management
- A.17 Business continuity
- A.18 Compliance
ISO 27001 FAQ
What is ISO 27001?
An international standard for Information Security Management Systems (ISMS). It requires organizations to assess risk, implement controls, monitor effectiveness, and continuously improve. 114 controls are grouped into 14 domains.
When was DialPhone certified?
Initial ISO 27001 certification 2023. Annual surveillance audits maintain certification; recertification every 3 years. Current certificate covers the global organization, not a single product line.
How does ISO 27001 compare to SOC 2?
Both address security management. ISO 27001 is more internationally recognized (European customers often prefer it). SOC 2 is more US-common and includes Availability/Confidentiality/Processing Integrity criteria. DialPhone holds both.
Can I see the certificate?
The certificate is public — request via compliance@dialphone.com. The underlying statement-of-applicability and audit report are shared under NDA.