ISO Certifications and Security
ISO 17100:2015 Translation Services
GPI is an ISO 17100:2015 certified Translation Service Provider (TSP) and has provided and passed all requirements for the core processes, resources, and other aspects necessary for the delivery of a quality translation service according to ISO standards. GPI has demonstrated conformity of its specified translation services to ISO 17100:2015 and the capability of its processes and resources to deliver a translation service that will meet its client's specifications.
ATC Certification Service for the ISO 17100:2015 standard certifies that a translation agency’s management system meets the requirements of the ISO standard. The translation services ISO standard focuses on key areas of organizing and delivering translation services including:
- Translation Vendor management
- Translation Project Manager training
- Infrastructure to support translation services
- Pre-production processes and activities
- Pre-sales processes
- Handling of translation project-related client information
- Translation Project preparation – administrative
- Translation Project preparation – technical
- Translation Project preparation – linguistic
ISO/IEC 27017:2015 Information Security
ISO/IEC 27017:2015 provides guidelines for information security controls applicable to the provision and use of cloud services by offering additional implementation guidance for relevant controls specified in ISO/IEC 27002 and introducing additional controls specifically related to cloud services. This Recommendation | International Standard provides controls and implementation guidance for both cloud service providers and cloud service customers.
GPI has passed and implemented all the 37 controls that this standard provides. These new controls address the following important areas:
- Secure configuration management of cloud services and systems
- Protection of data during transmission and storage in the cloud
- Protection and separation of a customer's virtual environment from the environments of other customers
- Measures to prevent unauthorized access to cloud resources
- Logging and monitoring of cloud activities for security incident detection
- Secure disposal of data and assets when terminating cloud services
ISO/IEC 27001:2013 Information Security
GPI is an ISO/IEC 27001:2013 certified Translation Service Provider (TSP) and has passed all requirements for the core policies,
procedures, guidelines, and associated resources and activities and other aspects necessary to protect GPI and our clients from business
and legal risks through data management practices that are compliant with ISO 27001 standards.
GPI’s second ISO certification, ISO/IEC 27001:2013 on information security management, is now part of, and is fully integrated with GPI’s
Globalization Project Management Suite® (GPMS) and Translation Portal ensuring information security is embedded in our processes, information
systems, and controls. The ISO/IEC 27001:2013 certification helps us protect GPI and our clients from business and legal risks through
data management practices that are compliant with ISO 27001 standards.
GPI completed all 14 controls and objectives of the ISO/IEC 27001:2013 Information Security requirements including:
- Information Security Policy
- Organization of Information Security
- Risk Assessment and Treatment
- Asset Management
- Access Control
- Cryptography
- Physical Security
- Operations Security
- Communications Security
- System Acquisition, Development, and Maintenance
- Supplier Relationships
- Compliance with Legal Requirements and Industry Standards
- Information Quality Management
- Risk Monitoring and Review
Customized Security
Globalization Partners International considers security an integral part of providing services to our clients. With the goal of safeguarding your information, we are always striving to improve security measures and implement the latest best practices for global IT infrastructure protection. All possible security precautions are taken to protect files, systems and processes, from password protecting individual files to utilization of secure intranets and extranets for staff and client interaction through fully encrypted workflows. This comprehensive approach to security management ensures that your data is safe in transit, as well as when it is stored on our servers. GPI typically secures nondisclosure and confidentiality agreements (NDA) with clients. Any and all subcontractors and/or strategic partners of GPI execute detailed NDA's AND adhere to GPI's security policies and practices before they are engaged. If your firm has specific security requirements, please let your GPI project manager know, and we will work with you to implement the specifics.