Information Security

Last updated - 15 February 2018

Protecting information is extremely important to us. That’s why we maintain a mature approach to implementing good security governance through recognised best practice
We process and store information about our customers and our business. This information in stored in a secure way which protects who has access to it and who can make changes, while still being available to support our business requirements. We have a robust security regime which has been demonstrated through maintaining the following certifications.

For information on any of Genesis Information Security Management please email: InfoSecurity@genesisha.org.uk

ISO 27001 logo

ISO 27001

The ISO 27001 Information Security standard helps organisations keep information secure through the implementation of an Information Security Management System (ISMS). Genesis has been certified against this standard and demonstrates good security governance when protecting customer and business information.

Cyber Essentials logo

Cyber Essentials

Genesis has been certified against the Cyber Essentials scheme which was developed by the UK Government to fulfil two functions -

  1. It provides a clear statement of the basic security requirements all organisations should implement to mitigate the risk from common Internet based threats
  2. Through the Cyber Essentials assurance framework, it offers a mechanism for organisations to demonstrate to customers, investors, insurers and others that they have taken these essential precautions.
PCI DSS Logo

PCI DSS certification for the Customer App

PCI DSS is the Payment Card Industry Data Security Standard which mandates how payment card information is processed, transmitted and stored securely.

Genesis processes customer card payment data using the Customer App, and has been accredited with the PCI DSS certification which confirms the security and protection of payment information.