ISO Certifications

SoftwareOne ISO Certifications

Technology aspirations without external validation are just wishful claims, which are not good enough for our customers. We deliver certified quality, information security, privacy, and environmental performance. To align our global product and services with the highest regional standards, our work is certified annually by TÜV Süd, and The American Institute of Certified Public Accountants (AICPA). Our current certificates are available for your review by country and language.

TÜV Süd

Founded in 1866, TÜV Süd is the world’s leading provider of technology certifications that reduce the impact of technological risks and protect people, assets, and the environment. Their 25,000 technologists define, develop, and certify compliance with standards enforced by the International Organization for Standardization (ISO).

ISO 9001:2015 – Quality

Company-wide

SoftwareOne Group: English | German

Subsidiaries A-L

Austria: English | German
Belgium: English | French | Dutch
Brazil: English | Portuguese
Bulgaria: English
Colombia: English | Spanish
Czech Republic: English
Denmark: English
Finland: English
France: English | French
Germany: English | German
Hungary: English
Ireland: English
Italy: English | Italian
Italy (Systematika): English | Italian
Luxembourg: English | French | German

Subsidiaries M-U

Mexico: English | Spanish
Netherlands: English | Dutch
Norway: English
Philippines: English
Poland: English
Romania: English
Slovakia: English
Slovenia: English
Spain: English | Spanish
Sweden: English
Switzerland: English | German | French
Türkiye: Turkish/English
United Kingdom: English

ISO 14001:2015 – Environment

Company-wide

SoftwareOne Group: English | German

Subsidiaries A-L

Austria: English | German
Belgium: English | French | Dutch
Brazil: English | Portuguese
Bulgaria: English
Colombia: English | Spanish
Czech Republic: English
Denmark: English
Finland: English
France: English | French
Germany: English | German
Hungary: English
Ireland: English
Italy: English | Italian
Italy (Systematika): English | Italian
Luxembourg: English | French | German

Subsidiaries M-U

Mexico: English | Spanish
Netherlands: English | Dutch
Norway: English
Philippines: English
Poland: English
Romania: English
Slovakia: English
Slovenia: English
Spain: English | Spanish
Sweden: English
Switzerland: English | German | French
Türkiye: English
United Kingdom: English

ISO/IEC 27001 – Information Security Management System

The Management of Information Security applies to all Information assets pertaining to operations and delivery of SAP services, development and maintenance of Marketplace Platform, implementation and maintenance of Managed Cloud and back up, Cloud Support, Cloud Services, Integrated Support Services & Cloud Service Providers, Security Operations Centre (SOC), On-premise support, Help desk/onsite support services, unified communication services, ITPM Services, ITAM Services, Publisher Services, SAMSimple services, AWS Services, Azure Advanced Services, MDR for Sentinel Service, Managed 365 Security Service, SAP services, Application Services, Backup Services, Apps Development & Data AI Services and the related support functions.

SoftwareOne Group: English
Australia (Melbourne): English
Australia (Perth): English
Australia (Sydney): English
Brazil (Belo Horizonte): English
Brazil (São Paulo): English
Bulgaria: English
Canada: English
Colombia (Bogotá): English
Colombia (Medellín): English
Costa Rica: English
Czech Republic: English
Germany: English
India (Bangalore): English
India (Chennai): English
India (Gurugram): English
India (Pune): English
Malaysia: English
Mexico (Ciudad de México / Mexico City): English
Mexico (Guadalajara): English
Netherlands: English
Philippines: English
Poland: English
Republic of Slovenia: English
Romania: English
Singapore: English
Slovakia: English
Spain (León): English
Spain (Madrid): English
Sweden: English
Switzerland: English
United Kingdom: English
Vietnam: English

Cyber Essentials

This status strengthens SoftwareOne's cyber credentials in addition to ISO27001. You can access more information at https://www.ncsc.gov.uk/.

United Kingdom: English

ISO/IEC 27701 – Privacy Information Management System

Information assets pertaining to Information Security and Privacy for the related support functions including IT, Risk, Assurance and Compliance, Human Resource, Administration and Legal.

SoftwareOne Group: English
Colombia (Bogotá): English
Colombia (Medelin): English
India (Chennai): English
India (Gurugram): English
Philippines: English
Singapore: English
Switzerland: English

ISO 22301:2019, Security and resilience – Business Continuity Management Systems

ISO 22301 is an international standard for Business Continuity Management (BCM). It provides a framework for organizations to plan, establish, implement, operate, monitor, review, maintain, and continually improve a documented management system to protect against, reduce the likelihood of, and ensure the business recovers from disruptive incidents. Achieving ISO 22301 certification demonstrates SoftwareOne's commitment to maintaining operational resilience and effective response strategies.

Türkiye: Turkish/English

ISO/IEC 27017:2015 – Information Security Controls for Cloud Services

For Information Security Controls applicable to the all Information Assets pertaining to Managed Cloud Services (Supplying, Implementing and Maintenance) and Supporting Functions (Risk & Internal Audit, Human Resources, Administration/Facilities Function).

SoftwareOne Group: English

ISO 37001 – Anti-bribery management systems

Transparency and trust are the building blocks of any organization’s credibility. Nothing undermines effective institutions and equitable business more than bribery, which is why there’s ISO 37001.

It’s the International Standard that allows organizations of all types to prevent, detect and address bribery by adopting an anti-bribery policy, appointing a person to oversee anti-bribery compliance, training, risk assessments and due diligence on projects and business associates, implementing financial and commercial controls, and instituting reporting and investigation procedures (source: https://www.iso.org/iso-37001-anti-bribery-management.html).

ISO 37001:2016 – Brazil: English
ISO 37001:2016 – Türkiye: Turkish/English
ISO 37001:2017 – Brazil: Portuguese

SOC2 Type II report provided by AICPA

SOC2 Type II report provides an independent assessment of SoftwareONE’s security and privacy control environment. SOC2 Type 2 report covers the AICPA’s (The American Institute of Certified Public Accountants) Trust Services Principles and Criteria for Security, Availability, Confidentiality, and Privacy. The assessment is an independent opinion on the design and operational effectiveness of the same.

The SOC2 Type II report is available for SoftwareOne clients upon request.

SOC3 report provided by AICPA

SOC3 report is a generic report that is designed to meet the needs of users who need assurance about the controls at a service organization relevant to security, availability, processing integrity confidentiality, or privacy, but do not have the need for or the knowledge necessary to make effective use of a SOC2 report. The assessment is an independent opinion on the design and operational effectiveness of the same.

The SOC3 report is available here for SoftwareOne clients.

Download report

TISAX (Trusted Information Security Assessment Exchange)

If you are an ENX registered industry representative, you can find the TISAX assessment details on the ENX portal. To access the SoftwareOne assessment results, log in to your existing TISAX account and search for SoftwareOne. Alternatively, you can narrow your search with the information below:

Germany

SoftwareOne Participant ID: PN2P03
SoftwareOne Assessment Level 3 (AL3) Scope ID: S3YZ4M
https://portal.enx.com/de-DE/SignIn

A pink, blue, and purple abstract background.

Connect with our experts

Share a few details about your business challenge, and we’ll get right back to you.

Connect with our experts

Share a few details about your business challenge, and we’ll get right back to you.

ISO Certifications

We hold ourselves to higher standards

SoftwareOne ISO Certifications

TÜV Süd

ISO 9001:2015 – Quality

ISO 14001:2015 – Environment

ISO/IEC 27001 – Information Security Management System

Cyber Essentials

ISO/IEC 27701 – Privacy Information Management System

ISO 22301:2019, Security and resilience – Business Continuity Management Systems

ISO/IEC 27017:2015 – Information Security Controls for Cloud Services

ISO 37001 – Anti-bribery management systems

SOC2 Type II report provided by AICPA

SOC3 report provided by AICPA

TISAX (Trusted Information Security Assessment Exchange)

Connect with our experts

Connect with our experts