GS Logo
The Green Sheet, Inc

Please Log in

A ThingA Bigger Thing

Tuesday, May 01, 2018 — 12:20:08 (EDT)

Semafone earns recertification for international ISO 27001:2013 standard

Boston and Guildford, U.K., May 1, 2018 — Semafone®, the leading provider of data security and compliance solutions for contact centers, announced that it has achieved recertification with the internationally recognized standard for information security management practices, ISO 27001:2013. The recertification demonstrates the company’s unwavering commitment to best practices in data security as it continues to be the only IT security vendor to have attained all four of the leading secure payment accreditations: ISO 27001, PA DSS, PCI DSS Level 1 Service Provider and the official Visa Merchant listing.

ISO 27001 helps organizations keep data secure by specifying the requirements for establishing, implementing, maintaining and continually improving information security management systems and techniques. To achieve the certification, Semafone was assessed against the framework and guidelines of the International Organization for Standardization’s information security management system (ISMS). This included measurement by a United Kingdom Accreditation Service (UKAS) approved external evaluator of Semafone’s people, processes and technology against the ISMS framework.

“From my very first meeting with Semafone, I saw the passion and commitment to information security demonstrated from the top levels of management to all the employees,” said Ivan Uzunov, lead auditor, SGS United Kingdom Limited. “Throughout our auditing process, we observed a high level of information security awareness and compliance with best practices, in areas such as access control, network security and the use of multifactor authentication by all staff. With this certification, Semafone’s clients can feel secure knowing that the company handles their sensitive information according to the most rigorous standards.”

“The security of sensitive information has become a globally recognized priority – businesses cannot simply hand over their most important data to service providers without the assurance that it will be protected and safeguarded,” said Tim Critchley, CEO, Semafone. “Customers and prospects are increasingly asking for evidence that their business partners have stringent security in place, and our recertification on the ISO 27001 standard gives them the peace of mind that we maintain the highest levels of data security. We work with many global brands, helping them improve their own data security processes, and this certification demonstrates that we practice what we preach.”

About Semafone

Semafone provides software to contact centers so they can take personal data securely over the telephone. Semafone’s patented data capture method collects sensitive information such as payment card or bank details and social security numbers directly from the customer’s telephone keypad for processing. This prevents personal data from entering the contact center, which protects against the risk of fraud and the associated reputational damage, ensuring compliance with industry regulations such as PCI DSS.

The company was founded in 2009 and now supports customers in 26 countries on five continents. Semafone is vertically agnostic and its extensive customer base includes companies such as Aviva Canada, Amica Mutual Insurance, British Sky Broadcasting, Pethealth, Rogers Communications, Santander, Sutter Health and TVG.

Major investors of Semafone include Octopus Investments and BGF (Business Growth Fund).

Semafone has achieved the four-leading security and payment accreditations: ISO 27001:2013, PA-DSS certification for Cardprotect its payment solution, PCI DSS Level 1 Service Provider and is a registered Visa Level 1 Merchant Agent. To learn more, visit and follow us on LinkedIn, Twitter and Facebook.

Source: Company press release.

List by Date | Search

Spotlight Innovators:

North American Bancard | USAePay | Impact Paysystem | Aliaswire