AICPA / SOC2 / ISO27001 Certification - GDPR
AICPA / SOC2 Certification
Verified since 2016
The SOC2 Certification verifies that the security of CHD Expert’s processes, servers, and data fully complies with all guidelines and regulations set by the American Institute of Certified Public Accountants (AICPA).
This certification gives our clients peace of mind in regards to the security, availability, and processing integrity of the systems CHD Expert uses to process user and operator data. It also demonstrates CHD Expert’s commitment to the confidentiality and privacy of the data processed by our systems.
Our certification ensures CHD Expert will continue to build trust with our client base and inspire confidence in our systems and servers.
Want to know more details about what a SOC2 Certification consists of? Click here for an explanation.
Protecting your information assets with ISO 27001
SO/IEC 27001 formally specifies an Information Security Management System (ISMS), a suite of activities concerning the management of information risks (called ‘information security risks’ in the standard). The ISMS is an overarching management framework through which the organization identifies, analyzes and addresses its information risks. The ISMS ensures that the security arrangements are fine-tuned to keep pace with changes to the security threats, vulnerabilities and business impacts – an important aspect in such a dynamic field, and a key advantage of ISO27k’s flexible risk-driven approach
ISO 27001 was developed to “provide a model for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an information security management system.”
ISO 27001 uses a topdown, risk-based approach and is technology-neutral. The specification defines a six-part planning process:
1. Define a security policy.
2. Define the scope of the ISMS.
3. Conduct a risk assessment.
4. Manage the identified risks.
5. Select control objectives and controls to be implemented.
6. Prepare a statement of applicability.
The specification includes details for documentation, management responsibility, internal audits, continual improvement, and corrective and preventive action. The standard requires cooperation among all sections of an organisation.
Want to know more details about ISO27001 certification? Click here for more information
The General Data Protection Regulation (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA). The GDPR aims primarily to give control to individuals over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU. It also addresses the export of personal data outside the EU and EEA areas.
CHD-Expert takes data protection, data security, and regulatory compliance very seriously, according to the GDPR data protection regulation.
We have taken a series o step to ensure compliance for clients using our services. We are also keeping a close eye on any further guidance issued by the data protection authorities.
For over 20 years, CHD Expert has collected, analyzed, and managed foodservice and hospitality data to help businesses win in this fragmented and fast-moving industry. Our comprehensive and segmented data allows us to adapt our local and global insights to our clients’ objectives. From ideas to execution, we deliver actionable solutions that drive business growth.