Pipedrive achieves ISO 27001 Certification

Pipedrive achieves ISO 27001 Certification

Pipedrive, the first CRM platform built from the salesperson’s point of view, today announced that it has successfully achieved ISO/IEC 27001:2013 Certification for their Sales Management System. Pipedrive retained international accredited Certification Body Skoda Minotti Risk Advisory Services, LLC for its ISO 27001 certification. Retaining the services of an Accredited Certification Body was important as we wanted to ensure that we conformed to the requirements of the standard. Pipedrive selected Skoda Minotti after an intensive search based on Skoda Minotti's reputation as a leading assurance solutions and compliance company.

Jesse Wojtkowiak Head of Information Security, Pipedrive, commented, “We believe that our customers’ data belongs to them and have taken all the steps to ensure that this data is secure. Our successful completion of the ISO 27001 certification is just one of a number of steps we have taken to provide our customers with the assurance that their data is safe in our hands and that we have controls and safeguards that we employ to protect and secure their data ”

Ben Osbrach, CISSP, CISA, QSA, partner-in-charge of Skoda Minotti's risk advisory group says, "We were excited to work with Pipedrive from the very start, they are an intriguing organization delivering high quality services and this adds to our growing ISO 27001 certification practice.  Mortality Verification and Locator Service providers continue to be a key industry for SOC reporting.”

ISO 27001 is a globally recognized standard mandating numerous controls for the establishment, maintenance and certification of an information security management system (ISMS). Pipedrive's ISMS specifies a host of technical, administrative and physical controls designed to secure their own information, as well as customer and employee information within the context of overall business risks. The successful completion of the voluntary engagement illustrates Pipedrive's ongoing commitment to create and maintain the most stringent controls for the protection and security of its customers' confidential information. More information about Pipedrive and their services can be found at www.pipedrive.com. 

The rigorous ISO 27001 certification, which included detailed testing of Pipedrive's controls, was performed by an Accredited Certification Body that specializes in conducting, ISO 27001, IT Assurance, SOC, PCI DSS Compliance, HITRUST, FISMA, NIST and other regulatory information security assessments.  The auditor examined Pipedrive's controls related to information security policies, organization of information security, human resource security, asset management, access control, cryptography, physical and environmental security, operations security, communications security, system acquisition, development and maintenance, supplier relationships, information security incident management, information security aspects of business continuity management, and more.

For more information about Pipedrive privacy and security, please head to: https://www.pipedrive.com/en/features/privacy-security

About Pipedrive

Founded in 2010, Pipedrive is the first CRM platform developed from the salesperson's point of view. Today, Pipedrive is used by sales teams at more than 90,000 companies worldwide. Pipedrive is the top-rated CRM and has offices in London; New York; Lisbon, Prague; Tampa/St. Pete, Florida, Dublin and Tallinn and Tartu, Estonia. Learn more at Pipedrive.com.

About Skoda Minotti

Skoda Minotti is a Certified Public Accounting Firm based in Cleveland, OH offering a variety of tax, finance, and business advisory services in virtually every area of business. The Risk Advisory practice specializes in SOC Reporting, PCI DSS Compliance, HIPAA Compliance and HITRUST validation, FISMA, NIST, ISO 27001, Vulnerability and Penetration Testing, and other regulatory information security assessments. Staffs in Skoda Minotti’s Risk Advisory hold several industry certifications including Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Qualified Security Assessor (QSA), GIAC Penetration Tester (GPEN), and GIAC Web Application Penetration Tester (GWAPT). For more information about Skoda Minotti’s Risk Advisory Services, please visit skodaminotti.com/risk.

Engineering blog
Previous article:
Hello World: Blog goes behind the scenes at Pipedrive engineering
Forbes Cloud 100
Next article:
Pipedrive included in the 2019 Forbes Cloud 100