Compliance & Data Security

Calligo takes its data responsibilities seriously.

We hold multiple data qualifications and hold numerous accreditations and ensure their ongoing observance, giving customers full confidence in the safety of their data.

 

 

27001-ACM-UKAS-GREY

ISO 27001:2013

Information Security Management Systems (ISMS)

Learn More

 

 

9001-ACM-UKAS-GREY

ISO 9001:2015

     Quality Management System (QMS)    

Learn More

 

ISO27018

ISO 27018

Protection of Personally Identifiable Information (PII) in public clouds

soc

SOC 2 - Type 1

       System and Organization Controls       

Learn More

 

CGDPRFcopy

GDPR

Adherence to and consultancy on the General Data Protection Regulation

Learn More

 

cyber-essentials-greypy

Cyber Essentials

Security controls that an organisation must have in place within their IT systems
 

iapp-cipm

CIPM

Certified Information Privacy Manager (IAPP)

Learn More

 

 

PSFGrey

PSF

      Professionnels du Secteur Financier      

Learn More

 

IAPP-CIPP

CIPP/C & /E

Certified Information Privacy Professional (Canada & Europe)

Learn More

 

g-cloud-400x267

G-Cloud Framework

       Part of the UK Digital Marketplace    

Learn More

 

ISO 27001:2013

ISO 27001:2013 is the latest version of the ISO’s (International Organisation for Standardization) common framework to manage information security within an organization. The basic objective of the ISO 27001 standard is to help establish and maintain an effective information security management system that has a defined continual improvement approach to ensure it can grow and change along with the business and the technologies used.

 

Calligo’s implementation of ISO 27001:2013 intends to protect the confidentiality, integrity and availability of the information assets that are stored within our platform, ensuring that we continue to maintain the highest levels of security and privacy regardless of jurisdiction. View the certificate, here

 

Back to top 

 

27001-ACM-UKAS-Colour_g

 

9001-ACM-UKAS - 2

 

ISO 9001:2015

ISO 9001 helps ensure that customers receive consistent, good quality products and services. At Calligo, we have built out our ISO 9001 QMS to provide a solid scalable framework for managing our business, delivering efficiency through repeatable, safe, high-quality processes.

 

The QMS touches all of the key areas within the organisation. This includes our “client facing” areas, Sales, Marketing, Service Delivery, Project Management, and Audit & Compliance and our “run the company” areas, such as Purchasing, HR, Health & Safety, and Corporate Governance. View the certificate, here

 

Back to top 

ISO 27018

ISO 27018 governs the processing of personal data in the cloud. It was the first privacy-specific international standard for the cloud and seeks to address issues such as keeping customer information confidential and secure, and preventing personal information from being processed for secondary purposes without user consent.

 

Calligo has aligned itself to ISO 27018, complementing our existing security risk management policies and procedures through ISO 27001. It is our intention to officially certify against ISO 27018 once a UKAS-recognised certification is obtainable.

 

Back to top 

 

ISO27018

 

soc

 

SOC 2 - Type 1

To add to our commitment to information security and governance through ISO 27001, Calligo has also achieved compliancy with a SOC 2 Type 1 Report.

This provides detailed information and assurance about our service's security, availability, processing integrity, confidentiality and/or privacy controls, based on their compliance with the AICPA’s (American Institute of Certified Public Accountants) TSC (Trust Services Criteria)

 

Back to top 

 

GDPR

We comply with the principles of the EU General Data Protection Regulation (GDPR), as well as the UK Data Protection Act 2018, the Data Protection (Jersey) Law 2005, the Data Protection (Bailiwick of Guernsey) Law 2001 and the Privacy and Electronic Communications (EC Directive) Regulations 2003. Calligo is also ISO 17024-accredited as well as EU GDPR F and EU GDPR P qualified.
 

Back to top 

 
CGDPRPGreyCGDPRFcopy

 

iso-17024-1

 

cyber-essentials-grey

 

Cyber Essentials

The Cyber Essentials scheme is a cyber security standard from the UK's National Cyber Security Centre. It identifies the security controls that an organisation must have in place within their IT systems in order to address cyber security effectively and mitigate the risk of data security threats.

 

Back to top 

 

CIPM

The Certified Information Privacy Manager accreditation shows that our teams are leaders in privacy program administration across the entire data lifecycle. Core to this qualification is the practical ability to implement privacy policies into day-to-day operations, including structuring the privacy team, implementing privacy program frameworks, communicating to stakeholders and measuring performance. 

 

Back to top 

 

iapp-cipm

 

IAPP-CIPPIAPP-CIPP-E

CIPP/C & CIPP/E 

The Certified Information Privacy Professional (CIPP) qualification shows that both the internal and external Calligo team is qualified in jurisdictional laws, regulations and enforcement models, plus the legal requirements for handling and transferring data. Calligo team members hold credentials for both Canada and Europe.

 

Back to top 

 

G-Cloud Framework

The G-Cloud Framework is part of the Digital Marketplace – a UK government procurement initiative to create commercial agreements between public sector organizations with specially selected suppliers, all of whom must meet stringent standards of high quality, credibility and experience. G-Cloud is dedicated to providing access to providers of cloud-based services, and is renewed annually. Calligo is reguarly re-approved onto the Framework.

 

Back to top 

 

gcloud-logo-black-1024x305-white

 

PSFGrey

 

PSF

Calligo is a PSF-authorised support service provider, qualified to "act as a sub-contrator of operational functions on behalf of other financial professionals" in Luxembourg. This certification is granted and routinely reassessed by the Commission de Surveillance du Secteur Financier (CSSF).

 

Back to top 

Contact Us

Contact our consultants to discuss how Calligo can make your data work harder for you

Send An Enquiry