Quality Standards

Quality of service both in how we deal with our customers and the standard of the services we provide are key to the success of our business. The business was born with quality at the forefront of everything we do. This is why we have the right standards in place and are currently working on additional standards as part of our continuous improvement program.

BS10008:2014 - Legal Admissibility of Electronic Information: Achieved March 2020

Many companies still believe that they are legally bound to archive some documents as paper for a certain time, such as accounting documents or contracts. According to a recent survey by AIIM, legal admissibility of scanned documents is still seen as an issue in over a quarter of businesses. However, the reality is that these rules only apply to a small minority of documents. Most digitised documents are now legally admissible in a court of law. The British Standard, BS 10008 "Evidential weight and legal admissibility of electronic information" covers this in detail.

ISO 27001:2013 - Information Security Management: Achieved November 2017

Most organisations have a number of information security controls. However, without an information security management system (ISMS), controls tend to be somewhat disorganised and disjointed, having been implemented often as point solutions to specific situations or simply as a matter of convention. Security controls in operation typically address certain aspects of IT or Data security specifically; leaving non-IT information assets (such as paperwork and proprietary knowledge) less protected on the whole. Moreover, business continuity planning and physical security may be managed quite independently of IT or information security while Human Resources practices may make little reference to the need to define and assign information security roles and responsibilities throughout the organisation.

ISO/IEC 27001 requires that management:

Systematically examine the organisation's information security risks, taking account of the threats, vulnerabilities, and impacts;

Design and implement a coherent and comprehensive suite of information security controls and/or other forms of risk treatment (such as risk avoidance or risk transfer) to address those risks that are deemed unacceptable; and

Adopt an overarching management process to ensure that the information security controls continue to meet the organisation's information security needs on an ongoing basis.

ISO/IEC 27001 is designed to cover much more than just IT.

What controls will be tested as part of certification to ISO/IEC 27001 is dependent on the certification auditor. This can include any controls that the organisation has deemed to be within the scope of the ISMS and this testing can be to any depth or extent as assessed by the auditor as needed to test that the control has been implemented and is operating effectively.

 

    

ISO 9001:2015 - Information Quality Management: Achieved November 2017

This standard helps organisations ensure they meet customers and other stakeholder needs within statutory and regulatory requirements related to a product or service. ISO 9000 deals with the fundamentals of quality management systems, including the seven quality management principles that underlie the family of standards. ISO 9001 deals with the requirements that organisations wishing to meet the standard must fulfil.

 

 

We always welcome feedback from our clients as this helps us to improve our service. If you would like to leave feed-back regarding the quality of our service: info@scanhouse.co.uk