OXFORD-based online solutions provider Ebbon-Dacs gains BSI security accreditation by achieving ISO 27001, the internationally recognised standard for achieving best practice in information security, to ensure it meets the data protection requirements of its major contract hire and leasing clients.
Ebbon-Dacs works with many of the country’s major leasing companies, including nine of the UK’s ten largest, to help source and acquire new vehicles and manage vehicle movements on behalf of client fleets through its portfolio of online solutions.
These include the market-leading Leaselink e-procurement system and the complementary vehicle delivery and collection system, moDel, both of which process huge volumes of client data and information.
For example, Leaselink alone handles 170,000 new electronic vehicle purchases per annum, while some 20,000 vehicle movements are processed through the moDel system every month.
Most major leasing companies now insist that all suppliers in their supply chain with access to large amounts of confidential client information have the appropriate information security management systems in place to properly safeguard the information.
The industry security standard is ISO 27001, which demonstrates that a company is following information security best practice and provides an independent, expert verification that information security is managed in line with international best practice and business objectives.
Ebbon-Dacs embarked on the ISO 27001 accreditation process around 18 months ago, via an internal project managed by chief information officer Dave Minto and head of programme management Rob Belcher.
The certificate lasts for three years, during which time regular 12-monthly expert reviews will take place, while Ebbon-Dacs carries out its own internal audits to validate the robustness of the system.
Dave Minto said: “As a major supplier to the vehicle leasing and contract hire sector, it was absolutely essential that we demonstrate to the industry that we are fully adept in handling confidential client information and that the correct security protocols are in place.
“Whilst we had good security management, procedures and systems in place, we wanted to put them to the test against the very highest ISO standards so we could identify any areas for improvement, as well as promoting our achievement to current and future clients,” he said.
Rob Belcher added: “To achieve this accreditation is industry recognition that we have met those standards and that our clients can be confident that their and their clients’ data is protected to the very highest possible levels and with the utmost security.”