Clutch Group Achieves Two Internationally Acclaimed Security Certifications

December 2nd, 2008

In two distinct milestones that further establish their best-in-class information security, global legal solutions provider Clutch Group has been certified for compliance to European Union (EU) Safe Harbor guidelines, and its Bangalore offices have been certified for ISO/IEC 27001:2005, the information security management system (ISMS) standard published by the International Organization for Standardization (ISO).

Both certifications set high standards for the confidentiality, integrity, and availability of client information and data security.

“These two important certifications illustrate Clutch Group’s continued market leadership and commitment to quality, security, and privacy, for our clients,” said Clutch Group CEO Abhi Shah. The EU Safe Harbor Framework was developed by the U.S. Department of Commerce in consultation with the European Commission. Compliance to this framework certifies that Clutch Group has implemented the necessary measures to secure and protect data it receives.

ISO/IEC 27001:2005 is the information security management system (ISMS) standard published by the International Organization for Standardization (ISO) and specifies the stringent requirements for establishing and monitoring security within the context of organizations overall business risk. Compliance to ISO 27001:2005 ensures business continuity and reduces business damage by preventing and minimizing the impact of security incidents.

Clutch Group’s Bangalore offices were assessed by external auditor, Norway based, Det Norske Veritas (DNV) India, which independently audited the company over 120 parameters concerning project delivery, technology, infrastructure, human resources, and internal finance.

“Through our observations, we have found that Clutch Group meets all of ISO 27001:2005 requirementsfor certification,” said Nagendra Rao (Lead Auditor, DNV). “We found the overall commitment of the managerial team to the ISMS standards to be noteworthy and the system administration manual to be very comprehensive.”