Veratrak Achieves ISO/IEC 27001:2022 Certification

In a significant milestone, Veratrak, a UK-based SaaS company specialising in supply chain solutions, has successfully achieved the ISO/IEC 27001:2022 certification. This latest version of the international standard for Information Security Management Systems (ISMS) underscores Veratrak's unwavering commitment to safeguarding sensitive data.

The International Organisation for Standardisation (ISO) sets the global benchmarks for security and safety, and ISO/IEC 27001:2022 is the gold standard for information security management. This accreditation empowers organisations to fortify their data assets against cyber threats, ensuring confidentiality, availability, and integrity, which is essential to safeguard sensitive data. 

Veratrak's journey to achieving this certification involved a rigorous independent audit, which highlighted the company's robust risk management, cyber-resilience and operational excellence. The audit process not only validated Veratrak's existing security measures but also demonstrated its proactive approach to addressing emerging cybersecurity challenges. The certificate, issued on February 17th, 2025, is a testament to Veratrak's dedication to protecting customer data and maintaining the highest standards of privacy and security.

Ashley Sainsbury, Head of Operations at Veratrak, emphasised the significance of this achievement: "ISO/IEC 27001:2022 certification is more than just a badge of honour, it's a reflection of our core values. At Veratrak, we embed security into every aspect of our operations, ensuring that our platform is not just efficient but also secure by design. Achieving this certification with zero non-conformities is a remarkable feat and a tribute to our team's relentless focus on safeguarding customer data."

"This certification marks a major milestone in our ongoing quest to enhance our security posture." added Jason Lacombe, CEO of Veratrak. " As we continue to innovate and expand our offerings, maintaining the trust of our customers remains paramount. ISO/IEC 27001:2022 certification is a powerful endorsement of our commitment to data integrity and security, and we're proud to set a high standard for the industry."

The upgrade to ISO/IEC 27001:2022 positions Veratrak at the forefront of information security, aligning with the latest best practices and addressing a global landscape of digital threats. This new version addresses the increasing complexity of digital threats, and places a stronger emphasis on risk-based thinking. It also includes enhanced guidance on cloud security and remote working, reflecting modern security challenges, such as remote working and bring your own device (BYOD) practices, and aligning more closely with other management system standards.

This achievement not only reinforces Veratrak's reputation as a trusted partner in the life sciences supply chain but also underscores its readiness to meet the complex security challenges of the future.

About Veratrak

Veratrak is an award-winning UK-based software company offering end-to-end solutions that help improve operational efficiency, reduce costs and facilitate better compliance across supply chain operations. Purpose-built for the life science industry, the Veratrak's Hub Platform links systems across pharmaceutical, logistics and contract manufacturing organisations to facilitate collaboration and enhance visibility between supply chain partners. 

About ISO

ISO (International Organisation for Standardisation) is the world’s largest developer and publisher of International Standards. ISO is a network of national standards bodies of 167 countries, based in Geneva, Switzerland. Learn more at iso.org

About IEC

The IEC publishes around 10 000 IEC International Standards which together with conformity assessment provide the technical framework that allows governments to build national quality infrastructure and companies of all sizes to buy and sell consistently safe and reliable products in most countries of the world. IEC International Standards serve as the basis for risk and quality management and are used in testing and certification to verify that manufacturer promises are kept. Learn more at iec.ch