PPL Insights
When proof of information security is essential, ISO 27001 is the solution
Executive Summary
PPL Insights are a leading market research agency specialising in consumer and sensory research both in the UK and internationally. Founded in 1995, they now support 20 of the UK’s top 100 brands, helping them deliver commercial success.
Managing sensitive client data is core to what they do.
The Challenge
When working on highly confidential client projects, it is essential for PPL Insights not only to safeguard client data, but also to be able to prove that. This was especially so with PPL Insights’ growing number of pharmaceutical clients, where procurement processes and compliance scrutiny are much more stringent than in other client sectors.
Whilst fully GDPR compliant, the growing issue for PPL Insights was that there was no official process to validate that regulatory adherence, something they felt was very important for their clients’ peace of mind.
The Solution
When several larger clients asked whether the Company had been certificated to ISO 27001, the decision to act was easy.
ISO 27001: 2013 Information Security Management System (ISMS) is the international standard that helps organisations manage their information security processes in line with global best practice.
Having already worked with Eddie Finch, at Chapter Three Consulting Ltd (C3C) to become GDPR compliant, PPL Insights engaged C3C again to help them gain ISO 27001 certification through a UKAS accredited certification body.
“Given the almost impenetrable wording of the ISO 27001 documentation, C3C’s templated approach and guidance through the whole process helped us enormously,” commented Mark Lifton, Client Services Director.
The Results
It is as yet still too soon to judge actual success factors. However, as more of our clients and prospects are listing ISO 27001 as a prerequisite, then just having the certification is already proving well worthwhile.
Mark Lifton, Client Services Director
www.pplinsights.com
When proof of information security is essential, ISO 27001 is the solution
Executive Summary
PPL Insights are a leading market research agency specialising in consumer and sensory research both in the UK and internationally. Founded in 1995, they now support 20 of the UK’s top 100 brands, helping them deliver commercial success.
Managing sensitive client data is core to what they do.
The Challenge
When working on highly confidential client projects, it is essential for PPL Insights not only to safeguard client data, but also to be able to prove that. This was especially so with PPL Insights’ growing number of pharmaceutical clients, where procurement processes and compliance scrutiny are much more stringent than in other client sectors.
Whilst fully GDPR compliant, the growing issue for PPL Insights was that there was no official process to validate that regulatory adherence, something they felt was very important for their clients’ peace of mind.
The Solution
When several larger clients asked whether the Company had been certificated to ISO 27001, the decision to act was easy.
ISO 27001: 2013 Information Security Management System (ISMS) is the international standard that helps organisations manage their information security processes in line with global best practice.
Having already worked with Eddie Finch, at Chapter Three Consulting Ltd (C3C) to become GDPR compliant, PPL Insights engaged C3C again to help them gain ISO 27001 certification through a UKAS accredited certification body.
“Given the almost impenetrable wording of the ISO 27001 documentation, C3C’s templated approach and guidance through the whole process helped us enormously,” commented Mark Lifton, Client Services Director.
The Results
It is as yet still too soon to judge actual success factors. However, as more of our clients and prospects are listing ISO 27001 as a prerequisite, then just having the certification is already proving well worthwhile.
Mark Lifton, Client Services Director
www.pplinsights.com