Data security is becoming an increasingly essential aspect of construction. Central to planning and
design, right through to handover, construction revolves around data security and integrity.
So, it’s reassuring to learn that Zutec has been awarded ISO 27001 certification.
for ISO 27001 certification, companies must demonstrate that their information security
management systems (ISMS) effectively mitigate the risks of things like cyber-attacks, data leaks and
Quite simply, this means that you can trust ISO certified companies (such as Zutec) and their
personnel to handle data on your behalf.
Any organisation that handles large amounts of data for other companies should be implementing
ISMS to ensure that the data they hold is secure. If their systems and internal processes are
adequate, you would expect them to hold ISO 27001 certification to illustrate their competence.
But why worry?
For a start, many strategic or governmental projects mandate that your data management systems
are ISO 27001 certified. If they are not, you might be blowing your chances at landing these kinds of
But its not just business opportunities you should be thinking about.
If your company operates within the EU, you’ll already be aware of GDPR (General Data Protection
Regulation). The EU’s GDPR stipulates that any organisation, whatever its size, has a legal obligation
to protect any personal data they hold. GDPR has been described as ‘the strictest data privacy law in
the world’, as evidenced by the fines for non-compliance.
Serious infringements can be met with fines of up to €20m or 4% of the previous year’s revenue.
And data protection is not unique to the EU. In Australia, serious infringements of The Privacy Act
(1988) can result in fines of up to $2.1m, while in the US, a complicated mosaic of state and federal
laws dictate how personal data must be handled.
Using an ISO 27001 certified company to manage your construction data protects your company,
your assets, your shareholders and directors from the potentially lethal costs of data breaches.
Reading this, you might assume that any construction management software company would
implement ISMS and proudly hold ISO 27001 certification. It seems like a no-brainer.
Surprisingly, that’s not the case.
Many of the systems on the market rely upon their hosting companies to implement ISMS and as
such, fall short of data security compliance.
Our advice? Check whether your data management supplier holds ISO 27001 certification. If they
don’t, move over to a platform that does.
Zutec are the experts in construction management systems. With Zutec modules, you not only
streamline your processes and save money, you also get the peace of mind that your data (or more
accurately, other people’s data that you are handling) is secure.
Contact Zutec now for a free consultation