ISO 27001:2022 Certification

Why ISO27001:2022?

The 2022 version of ISO 27001 replaces the previous 2013 edition and introduces significant improvements. Controls have been expanded and optimized, the focus on risk management and privacy has been strengthened, and the standard aligns more closely with modern IT environments. With this update, we demonstrate that our information security management system is up to date and compliant with international best practices.

Security measures and security operations center

The security of our data and systems is our top priority. At EZ Factory, we manage data security on multiple levels:

Security Operations Center (SOC)
Our central IT security control point. The SOC monitors systems 24/7, conducts penetration testing, and evaluates the effectiveness of our security measures.
Security by Design
New systems and features of the EZ-GO platform are assessed for security from the design phase onward. Security is therefore an integral part of every change.
Change Management
Every change to systems, processes, or data storage is assessed for risks, thoroughly tested, and only implemented once verified as secure.
Backups & Redundancy
Data is backed up in real time across multiple locations to ensure business continuity in case of system failure or emergencies.
Employee Training & Awareness
Our team receives ongoing training and follows strict procedures for data access, usage, and storage. Cybersecurity awareness is part of our daily operations.
Suppliers & Partners
External parties are evaluated on their security standards to minimize supply chain risks.

Scope and compliance

Our ISO 27001 certification covers both our internal business processes and the EZ-GO platform, including collaboration with partners and suppliers. All system and process changes are assessed for potential risks and adjusted where necessary. We also comply with relevant laws and regulations, including GDPR data protection legislation and telecommunications regulations.

Certification and audits

The external audit was conducted by TÜV NORD Netherlands and confirmed that EZ Factory fully complies with the ISO 27001:2022 standards. The certification is valid for three years, with annual external audits to ensure ongoing compliance and security. In addition, we conduct internal audits to verify that all processes are properly followed and that improvement opportunities are addressed promptly.

Maintenance

In January 2025, the advisory and certification body TÜV NORD Netherlands conducted the external audit and confirmed that we meet all ISO 27001:2022 requirements. We received the certificate in March 2025, and it is valid for three years. Each year, TÜV NORD performs an external audit to verify that security continues to be optimally safeguarded. After three years, we go through the full recertification process again. This ensures that we continue to meet all requirements.

In addition, we regularly conduct internal audits. We do not implement security measures just to obtain certification, our goal is to ensure that data and systems are always fully secure.

What does this mean for you as a customer?

Our customers typically notice nothing, and that is exactly the intention. System and data security should be reliable and invisible. ISO 27001 provides independent confirmation that your data is protected, processes are secure, and risks are effectively managed.

For security reasons, we do not disclose further details about our protective measures. However, we understand that you may want additional information.