ServiceNow Achieves ISO27701 and APEC PRP Certification
February 22, 2021
Share this

ServiceNow attained both the International Organisation for Standardisation’s ISO27701 and Asia‑Pacific Economic Cooperation Privacy Recognition for Processors (APEC PRP) Certifications.

Building on its already robust and mature privacy, security and compliance processes, these certifications further assist ServiceNow in achieving the highest standard of data privacy protections. The latest announcement, along with previously achieved certifications including ISO 27001 and SOC 2, enhance the global data privacy posture of the ServiceNow enterprise cloud offering.

The certifications are an important milestone as ServiceNow continues to scale and build customer and partner trust. The achievement of these certifications highlights ServiceNow’s commitment to privacy, through complying with new and evolving digital privacy and safety mandates.

ISO 27001 improves and maintains the safeguarding of data. It acts as a privacy extension to the International Organisation for Standardisation’s international information security management standards, ISO/IEC 27001 and ISO/IEC 27002.

As an international management system standard, ISO27701:

- Demonstrates compliance with privacy regulations around the world, including GDPR

- Streamlines privacy controls to reduce the risk to the privacy rights of individuals

- Underlines ServiceNow’s best in practice security posture, protecting the organization from information security breaches

- Specifies the requirements for establishing, implementing, maintaining and continually improving a PIMS (Privacy Information Management System)

- Provides guidance on the protection of privacy, including how organizations should manage personal information

APEC PRP puts ServiceNow among a small group of organizations which have established robust programs to support compliant cross‑border data transfers.

The APEC PRP framework:

- Allows data processors to demonstrate their ability to provide effective implementation of a data controller’s privacy obligations under the APEC Cross‑Border Privacy Rules (APEC CBPR)

- Gives data controllers the ability to identify qualified, accountable data processors

- Highlights ServiceNow’s commitment to servicing the Asia‑Pacific Economic Cooperation region, comprising of countries across Asia, Australia, and the Americas

As ServiceNow continues to evolve and expand its’ continued protection of customer and user data, meeting privacy management standards remains central to its wider privacy and data compliance program.

Share this

The Latest

March 02, 2021

The Model T automobile was introduced in 1908 ... Within a few years, competitors arrived on the scene including relic names such as Overland, Maxwell, and names that survived like Buick and Dodge. So, what does this have to do with the hybrid cloud market? From a business perspective — a lot ...

March 01, 2021

DevOps Institute announced the launch of the 2021 SRE Survey in collaboration with Catchpoint and VMware Tanzu. The survey will result in a more in-depth understanding of how SRE teams are organized, how they are measured, and a deep dive into specific automation needs within SRE teams ...

February 25, 2021

Organizations use data to fuel their operations, make smart business decisions, improve customer relationships, and much more. Because so much value can be extracted from data its influence is generally positive, but it can also be detrimental to a business experiencing a serious disruption such as a cyberattack, insider threat, or storage platform-specific hack or bug ...

February 24, 2021

Previously siloed IT teams and technologies are converging as enterprises accelerate their modernization efforts in reaction to COVID-19, according to a study by LogicMonitor ...

February 23, 2021

You surf the internet, don't you? While all of us are at home due to Covid lock-down and accepting a new reality, the majority of the work is happening online. IT managers are looking for tools that can track the user digital experience. Executives are reading a report from Gartner or Forrester about some of the best networking monitoring solutions available on the market. Project managers are using Microsoft Teams online to communicate and ensure team members are meeting deliverables on time. Remote employees everywhere use OWA to check their office mails. No matter what, you can be quite sure that everyone is using their favorite browser and search engine for connecting online and accomplish tasks ...

February 22, 2021

With the right solutions, teams can move themselves out of the shadows of error resolution and into the light of innovation. Observability data, drawn from their systems and imbued with context from AI, lets teams automate the issues holding them back. Contextualized data and insights also give them the language to speak to the incremental, product-led approach and the direction to drive key innovations in customer experience improvement. Communicating value becomes a much easier proposition for DevOps practitioners — and they can take their seat at the company table as contributors to value ...

February 18, 2021

Prediction: Successful organizations will blur (or erase) the line between ITOps and DevOps. DevOps has to coexist with traditional IT operations ... So bring a little DevOps to every aspect of IT operations. You don't even have to call it DevOps ...

February 17, 2021

The use of unified communications and collaboration (UC&C) solutions has increased since the start of the pandemic, and this increased use has created challenges for IT teams, according to a survey commissioned by NETSCOUT SYSTEMS ...

February 16, 2021
The AI+ITOPS Podcast just hit the 10K + download mark early this month. Most people listen to entire episodes, and many engage with us by sending a note on LinkedIn, Twitter, a direct email asking questions, clarifications, strategy advice, product selection advice ...
February 11, 2021

Cloud-based innovations like microservices, containers and orchestration let developers code better, faster, but the underlying infrastructure becomes dynamic and ephemeral, and service-level interactions are hard to see. It’s a critical evolution, but the rapid change reduces visibility, predictability and control. Hence, observability ...