Clemenger Group has achieved ISO 27001 certification in New Zealand in a move designed to protect the company against increased threats of data fraud and cyber security.
Reflective of changing market conditions, the business also boosted investment within information security management, including the creation of a dedicated Information Security Manager role.
With the aim of providing improved data protection, the change impacts the company’s advertising, marketing, PR and research businesses, which include Colenso BBDO, 99, Raydar, Clemenger BBDO Wellington and Perceptive.
“We are increasingly being entrusted with our clients’ first-party data in order to create truly valuable customer connections and experiences, and as an industry leader and a true partner to our clients, we have a responsibility over their information and assets,” said Jim Gall, CEO of Clemenger Group New Zealand.
According to Gall, the decision to apply for ISO certification was a “critical move” for the business in building appropriate governance around the management, retention and optimisation of highly confidential client and consumer data.
“You can’t wing this,” Gall added. “Gaining and maintaining certification requires significant adherence to policies and procedures that most agencies in New Zealand would not have.
“We want to instil confidence in our operations and the ISO certification is a great result of the action and commitment we’ve taken to prioritise information security.”
The internationally recognised ISO 27001 certification is awarded to businesses that demonstrate "robust and thorough" information security management systems, following an auditing process as required by the International Standards Organisation.
Clemenger Group’s technology-based research agency, Perceptive Group, became ISO certified in December 2016, and will be eligible for recertification at end of this year.
“Clients and suppliers often ask about how we monitor data privacy risks and the process for managing responses to incidents,” added Chris Pescott, CEO of Perceptive Group. “ISO requirements reflect the highest standard of information security which is great evidence of what we’re doing right.
“However, we know that in the digital information age, new technologies bring new risks so we’re continuously looking at ways of improving on existing processes.”
Furthermore, Gall said Clemenger Group New Zealand reviewed the implementation and effectiveness of its processes across a number of areas prior to the independent audit, including: legal and regulatory compliance, risk management processes, responses to security incidents, and educating and equipping staff to deal with cyber security risks.