Mimecast, the email security, continuity and archiving cloud service provider, today announced that it has achieved certification to ISO 27018:2014 for protection of personally identifiable information in the cloud. Certification Europe™, an accredited ISO Certification body with global leading expertise in auditing information security management systems, has presented Mimecast with ISO 27018 certification after verifying full compliance with the controls and objectives of code of practice.
This certification signifies the protection of personally identifiable information (PII) in Mimecast’s service platform, products, infrastructure, support, operational services and facilities. ISO 27018 is the first international set of privacy controls in a public cloud computing environment, and Mimecast is one of the very first cloud service providers to gain the certification.
Mimecast’s ISO 27018 compliance extends its previous ISO 27001 certification, further strengthening how the company protects customer email and data globally. Throughout the process of becoming compliant with ISO 27018, Mimecast demonstrated its consideration for international legal requirements relevant to its public cloud services, such as the UK Data Protection Act, EU General Data Protection Directive and the Australian Privacy Principles, as well as to its customers and partners.
“Leading the industry as one of the first independently verified cloud service providers with an ISO 27018 certification represents a major milestone in our cloud privacy and security efforts,” said Neil Murray, chief technology officer, Mimecast. “Today’s threat landscape is extremely complex, so choosing a cloud service provider like Mimecast that is constantly updating its practices is imperative for keeping hackers at bay, maintaining business continuity and safeguarding mission-critical email and data.”
“Congratulations to Mimecast for being our first client globally to achieve certification for compliance to ISO 27018,” said Michael Brophy, CEO of Certification Europe. “Mimecast has joined an elite list of 27018 certified companies and further aligned with their long standing information security certification to the ISO 27001:2013 standard. Mimecast has continued to demonstrate a true commitment to being both a diligent custodian of their clients’ data in the cloud and empowering their clients with enhanced control over their own data and existing security provisions. This certification will provide Mimecast’s customers with confidence, assurance and certainty as to the very highest standards by which Mimecast protects their information.”
Mimecast (mimecast.com) makes business email and data safer for more than 14,500 customers and millions of employees worldwide. Founded in 2003, the Company's next-generation cloud-based security, archiving and continuity services protect email, and deliver comprehensive email risk management in a single, fully-integrated subscription service. Mimecast reduces email risk and the complexity and cost of managing the array of point solutions traditionally used to protect email and its data. For customers that have migrated to cloud services like Microsoft Office 365, Mimecast mitigates single vendor exposure by strengthening security coverage, combating downtime and improving archiving.
Mimecast Email Security protects against malware, spam, advanced phishing and other emerging attacks, while preventing data leaks. Mimecast Mailbox Continuity enables employees to continue using email during planned and unplanned outages. Mimecast Enterprise Information Archiving unifies email, file and instant messaging data to support e-discovery and give employees fast access to their personal archive via PC, Mac and mobile apps.