Smile Digital Health Achieves ISO/IEC 27001 Certification - Information Security Management

Smile Digital Health has been recognized for its ongoing commitment to protect the integrity and confidentiality of stakeholder health data through adherence to stringent information security management controls.

Smile Digital Health, a leader in health data storage and integration, has been awarded ISO/IEC 27001 certification following an extensive independent audit of its information security management system (ISMS). Issued by the British Standards Institution (BSI), one of the world's largest and most reputable certification bodies, this credential demonstrates dedication to attain best-in-class security and safeguard client information. ISO/IEC 27001 is a globally recognized set of standards that outlines best practices to help organizations establish, implement, operate, monitor, review, maintain, and continually improve information security management. In adopting these standards, Smile applied rigorous policies, procedures, and other controls across people, processes, and technology to manage risk and secure data assets.

Given the growing cyber threat to healthcare organizations, it is a challenge to meet interoperability demands while guarding the security and privacy of sensitive information, including health records. Smile chose to seek certification and take a proactive, risk-based approach to information security management that prioritizes data protection and upholds stakeholder confidence. Measures go beyond the maintenance of existing ISMS controls, with practices in place for continuous reviews and enhancements as security and compliance requirements evolve.

“This initial step of certification demonstrates the commitment of Smile staff and leadership to implement mature frameworks that position us as industry leaders and effectively support our clients. One of the primary corporate objectives has always been the protection of client information, and this certification formalizes that intent,” said Luis de Barros, Chief Privacy and Security Officer at Smile. “We hope to build on this certification and reach higher levels of maturity in the near future.”