Pangeanic is one of the few companies in the language industry worldwide to demonstrate a fully operational Information Security Management System for both its software divisions and human services. ISO/IEC 27001 is a security standard that formally specifies an ISMS intended to manage the security of information that a company holds on behalf of its clients or users. All staff-to-staff and staff-to-client interactions, as well as internal routines involving company hardware, software, and communications, are under strict ISO 27001 Information Security Management. This standard also suggests implementing data anonymization policies to increase security levels when sharing data. Pangeanic leads the European project MAPA (anonymization service for public administrations) and has its own anonymization service available as SaaS or on-premise. As a formal specification, ISO/IEC 27001 sets requirements that define how to implement, monitor, maintain, and continually improve the management system. It also prescribes a set of best practices including documentation requirements, division of responsibility, availability, data access control, security, auditing, and corrective and preventive measures.
| "We are very proud to be the first translation and Natural Language Processing company in Spain to receive this certificate, particularly as we serve clients across many international jurisdictions." Manuel Herranz |
“Obtaining the ISO 27001 for information security after a long certification process that took place during the lockdown and the COVID pandemic, in the most challenging months of 2020, is a confirmation that our ongoing efforts to improve security have been successful, that Pangeanic's remote operations are secure, and that we can meet high quality standards in data security on an international level,” explains CEO Manuel Herranz. “We are very proud to be the first translation company and Natural Language Processing firm in Spain to receive this certificate, particularly because we serve clients in many international jurisdictions. Working from home is becoming the norm, and data leaks in machine translation or human translation, in anonymization, when sharing documentation and many other processes within an organization can occur if there are no clear procedures and if clients and staff are not aware of the importance of privacy in data handling,” Manuel adds.
"Certification to ISO/IEC 27001 helps organizations comply with numerous regulatory and legal requirements that relate to the security of information. It is a gold standard upon which business conversations can start. If we add this to our anonymization services, Pangeanic clients can rest assured privacy is at the top of our main concerns."
Pangeanic was already certified under the international standard ISO 9001 (Management Systems) since 2007, ISO 17100:2015, and ISO 13485:2016 (Translation standards for the medical-healthcare sector) by the certification body EQA. “All these quality certifications provide clearer evidence of the high level of service quality at Pangeanic in the interest of its clients.” “Being certified according to this ISO standard is very important for Pangeanic, as it demonstrates our long-term commitment to working with clear security practices that guarantee robust and transparent procedures. Our solid operational processes in the ICT and general fields also fully comply with the General Data Protection Regulation (GDPR), CCPA, and HIPAA. This means that the standards to which we maintain and protect personal information are also up to date with the latest international regulations on information security and privacy.”