Skip to main content
ABV is ISO 27001 certified, demonstrating our commitment to information security through rigorous, independently-audited practices.

What is ISO 27001?

ISO 27001 is the international standard for information security management systems (ISMS). It defines a systematic approach to managing sensitive information through people, processes, and technology controls. Certification requires independent third-party auditors to verify our security practices are properly designed, implemented, and continuously improved. ISO 27001 covers 114 security controls across 14 domains including organizational policies, access control, encryption, secure development, and incident response. We undergo annual surveillance audits and full recertification every 3 years.

How ISO 27001 Protects Your Data

Our ISO 27001 certification ensures we’ve implemented controls that protect your ABV data:
  • Access Control: Role-based access, multi-factor authentication, regular access reviews
  • Encryption: TLS 1.2+ in transit, AES-256 at rest with AWS KMS key management
  • Vulnerability Management: Automated scanning, penetration testing, patch management
  • Incident Response: 24/7 monitoring, defined escalation, customer notification protocols
  • Secure Development: Security requirements, code review, security testing
  • Business Continuity: High-availability architecture, encrypted cross-region backups, disaster recovery
Learn more about our security practices

Accessing Our Certificate

Customers on Pro and Enterprise plans can request our ISO 27001 certificate, Statement of Applicability (SOA), or attestation letter for vendor security reviews and compliance audits. To request documentation:
  1. Email [email protected] from your company email
  2. Include your organization name and ABV account details
  3. Specify what you need (certificate, SOA, attestation letter)
  4. Provide context (vendor review, compliance audit, etc.)
We typically respond within 1-2 business days. The full SOA contains sensitive security details and is provided under NDA for enterprise customers.