By clicking “Accept All Cookies”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.
PreferencesDenyAccept
Left arrow
Blogs

Affinity achieves ISO 27701 certification

table of contents
Down arrow
Text Link
Text Link

Affinity is committed to providing the highest level of data privacy, which is why we are pleased to share that we have received the ISO 27701 certification.

This certification is the global standard for managing and protecting personal data. It builds on the many robust privacy and security measures we have in place, including compliance with ISO 27001, ISO 27017, ISO 27018, SOC 2 Type 2, and GDPR. It also reinforces our ongoing commitment to protecting our customers’ data. 

What is ISO 27701? 

ISO 27701 is a framework for processing, managing, and protecting personal data in a way that complies with relevant data privacy regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). 

It’s an extension to our existing ISO 27001 certification, and verifies that Affinity is equipped to assess, react to, and reduce risks associated with collecting, maintaining, and processing personal information. 

To obtain this certification, we underwent a rigorous assessment and audit of our privacy operations and IT governance by NQA, one of the world’s leading privacy and security certification bodies.  

Peter Romano, Vice President of Information Security at Affinity, says: 

“ISO 27701 builds on the security foundations we have been establishing for some years now. We already comply with the EU’s GDPR, California’s CCPA, and other data privacy requirements and now ISO 27701 offers credible proof to our customers of this commitment to privacy.”

Why does this certification matter?

Private capital is a relationship-driven industry, and one of Affinity’s strengths is in drawing meaningful insights from those relationships. By analyzing data stored in emails and calendar invites, Affinity transforms information into relationship intelligence that helps drive deals forward. With this data comes our important responsibility to protect it. 

“You can’t get much more sensitive than the email and calendar data we process for our thousands of private capital customers. These firms are handling millions of dollars of investments using Affinity and that requires a level of trust in us that we take very seriously.” — Peter Romano

The ISO 27701 certification assures our customers that we have the systems and processes in place to effectively assess, mitigate, and respond to risks associated with handling personal information.

Learn more about our enterprise-grade security measures

We are committed to safeguarding your data and are proud of the privacy and security foundation we’ve been establishing for years. To learn more about how we protect your data, visit https://www.affinity.co/enterprise-grade-security.

“This accomplishment highlights our forward-thinking stance on data privacy, our commitment to adhering to international privacy laws, and our ongoing endeavors to reassure our customers that their confidence in us is justified.” — Peter Romano

{{request-demo-3="/rt-components"}}

author
Lexi Peck
posted in
Data Security
Private Capital
Data
share this
Data

Related Articles

Deciphering the VC fundraising landscape

Best practices for successfully navigating the VC fundraising process

Affinity’s latest releases: Automation Builder, Affinity iOS, and more

5 top use cases for Affinity’s new Automation Builder

Interested in learning more?

Reach out to us and get a personalized demo

Talk to Sales