How We Protect Your Data
Data security is a critical issue for companies in promotional management and fulfilment. We regularly deal with sensitive customer data, if compromised, could lead to significant financial losses for clients and customers. With Benamic, our data security commitment means that our clients can entrust us with their most sensitive information.
ISO 27001 certified
Our data security management system is certified at the highest international standard.
ISO 9001 certified
Our quality management system is also certified to the highest international standard, so you know your data is in safe hands.
Formal ISMS
(Information Security Management Systems)
We have strict policies to engage with third-party vendors; all suppliers must undergo a due diligence assessment before they are approved.
Fully GDPR compliant
We are fully GDPR compliant, and our data security practices exceed the requirements of the GDPR.
Internal Security and Risk Manager
We have a dedicated internal security and risk manager who handles ensuring the safety of your data.
Regular external risk assessments
We conduct regular risk assessments with independent third parties to ensure that our data security measures are up to date and effective.
Routine security testing
We carry out routine security testing to identify and fix any potential vulnerabilities in our systems.
Frequent review and update of security policies
We frequently review and update our security policies to ensure they are up to date and effective.
Recurring staff security training
We provide recurring staff security training to ensure that all our employees understand the importance of data security.
Data retention policy
We have a formal data retention policy in place to ensure that your data is only kept for as long as is necessary.
SSL encryption
All data that passes between our systems and your devices is encrypted with SSL technology.
Secure data centres
All our data is stored in secure ISO27001, ISO22301-certified data centres, which also keep a SOC 2 report.
24/7 system monitoring
Our systems are monitored 24/7 for suspicious activity ensuring that any issues with the security of data are identified and resolved quickly.
Stringent vendor engagement policies
We have strict policies to engage with third-party vendors; all suppliers must undergo a due diligence assessment before they are approved.
Frequently asked questions
ISO 27001 is a set of international standards for managing the security of information and data. If your company has been certified, this means that your data is stored securely and in compliance with legal requirements, such as GDPR. The standard sets out a process-based approach for establishing, implementing, operating, monitoring, and improving information security management systems (ISMS).
ISO 9001 is the international standard that specifies requirements for a quality management system (QMS). Organisations use the standard to show the ability to consistently provide products and services that meet customer and regulatory requirements. It is also used as the basis for continual improvement efforts.
Benamic’s systems are audited regularly by our team of certified security professionals. We also take part in regular independent third-party audits to ensure that our systems are up to date and meet the latest industry standards. Our commitment to data security is one of the reasons why we’re a trusted partner for businesses of all sizes.
Privacy and data protection are important values for Benamic, and we remind our employees of their obligations through regular awareness communications from our Data Protection Officer. All our employees receive mandatory annual training and testing training on how to protect our clients’ data.
We have a dedicated internal security and risk manager who handles ensuring the safety of your data. We also carry out regular risk assessments with independent third parties to ensure that our data security measures are up to date and effective.