Health Data Compass Attains ISO 27001 Certification from Schellman, Demonstrating a Commitment to Top-tier Information Security 

Health Data Compass proudly announces its attainment of the esteemed ISO 27001 Certification, solidifying its position as a leader in information security and data protection. This certification was completed by the accredited certification body Schellman. 

This certification, recognized globally as the pinnacle of Information Security Management Systems (ISMS), underscores Compass' unwavering commitment to safeguarding sensitive information for its customers, partners, and stakeholders alike. 

Dr. Ian Brooks, Director of Health Data Compass and an Associate Professor in the Department of Biomedical Informatics, says, "Compass has always provided best-in-class data security and compliance, working as we do with our campus partners and Google, our cloud provider. Since our inception, we have been consistently certified as HIPAA compliant under the NIST 800-53 standards. Acquiring ISO 27001 certification enabled us to evaluate our compliance posture against international benchmarks to keep our thinking and attitudes fresh and focused."

Awarded by Schellman, a leading IT audit and cybersecurity firm, the ISO 27001 certification is a testament to Compass’ dedication to implementing stringent security controls and protocols, ensuring the confidentiality, integrity, and availability of data. This achievement is of paramount importance for several reasons:

1. Strengthened Security Measures: By adhering to ISO 27001 standards, Compass has fortified its defenses against cyber threats, implementing robust security measures to safeguard against potential risks effectively.

2. Enhanced Trust and Confidence: Customers and partners can place their complete trust in Compass’ ability to protect their data, fostering stronger relationships and instilling confidence in the integrity of the services provided.

3. Compliance and Regulatory Adherence: ISO 27001 certification ensures Compass meets not only industry best practices but also regulations, assuring that all operations are conducted in accordance with global standards.

4. Ensured Business Continuity: With a comprehensive Information Security Management System in place, Compass is well-prepared to address and mitigate security threats, ensuring uninterrupted business operations even in the face of adversity.

This achievement reflects Compass’ unwavering dedication to excellence and continual improvement across all facets of its operations. Compass extends its heartfelt appreciation to its dedicated team whose efforts have been instrumental in this significant milestone. 

Dr. Brooks added, "As Director of Health Data Compass I am justifiably very proud of my team. As a faculty researcher and user of Compass services I also appreciate knowing that Compass and our campus partners are keeping a vigilant watch over our data and patient privacy.” 

For Compass, this certification marks not only a moment of celebration but also a reaffirmation of its commitment to providing the highest level of security and service excellence to its valued customers.

A copy of the certification can be found on Schellman’s public certification directory.