Trusted to keep personal information safe and secure.

ISO 27001:2013 ISO 27701:2019 UKASData privacy is fundamental in delivering services to, and looking after the best interests of our clients, members and shareholders.

CGI is one of the first UK companies to achieve a UKAS accredited ISO27701:2019 certification.

We have a well-established data privacy policy with associated processes and management responsibilities in place, both within the UK and globally.

As part of our suite of international certifications, we have enhanced our existing information security management system to meet the additional requirements of ISO/IEC 27701:2019 to include all elements of data protection, whether we are acting as Data Processor or Data Controller.

Our certification demonstrates that data privacy and protection are integral to CGI’s overall business, privacy and security strategies, associated processes, and that data privacy and security requirements are being adhered to when handling customers’ systems and information. This is supported by the existing ISO/IEC 27001:2013 compliant management systems and certification.

Formal certification conveys that CGI in the UK has:

  • Formal data privacy and protection processes in place and employees with the knowledge and experience to handle personal data securely.
  • An effective way to demonstrate compliance to stakeholders and regulators, through the use of integrated internationally recognised standards.
  • A means of addressing the growing importance of client confidence, both offshore and onshore, especially in areas of data transfer.