CIRQ (the Certification Institute for Research Quality), an International Standards Organization (ISO) audit and certification body and subsidiary of the Insights Association, has awarded certification to St. Louis-based Brado for compliance with the ISO/IEC 27001:2013, a widely recognized and internationally accepted information security standard.
“We are incredibly proud of our people for attaining this critical certification,” said Andy Parham, CEO of Brado. “Very few businesses have the diligence and expertise to make it through such a rigorous process.”
Accredited certification to ISO 27001 involves undertaking regular reviews and internal audits to ensure the continual improvement of the information security management system (ISMS). Brado’s certification will be verified annually by CIRQ’s independent audit establishing continued compliance and protection of data.
Brado’s Information Security Management System (ISMS) scope of certification covers the management of information security for the processes necessary to deliver marketing services to its clients.
About Brado
Brado is a tech-enabled marketing firm. For over 20 years, Brado has been helping global, Fortune 100 brands achieve insight. In healthcare alone, Brado annually has thousands of hours of conversations with patients and physicians. Brado strategists are creative problem-solvers and storytellers who happen to love qual and quant research. Brado is known for their consumer journeys, a unique combination of data science and empathy.
About CIRQ
A subsidiary of the Insights Association, CIRQ (the Certification Institute for Research Quality) was established to provide assessment and certification services to market research firms seeking certification to ISO 20252, ISO 27001, and ISO 27701. A non-profit entity, CIRQ is committed to providing timely, thorough, and impartial assessments of its customers' research process management or information security management systems regarding certification to corresponding standards. CIRQ was established in compliance with all ISO requirements for certification bodies that provide auditing and certification services and is fully accredited by ANSI’s National Accreditation Board. To conform to its mandate of objective and impartial audits to these ISO standards, CIRQ is independently operated and managed under the oversight of an independent Board of Directors and submits to annual moderation by external authorities on ISO certification bodies.
About ISO 27001 certification
ISO 27001 provides a framework for companies to manage their data security. It establishes requirements for information controls to manage people, processes, and technology. The standard covers both the technological aspects of security as well as corporate security, physical security, etc., and relies on regular risk assessments enabling a company to consistently identify and treat security threats. ISO 27001 is accepted worldwide as an assurance that proper and continual measures have been taken to protect valuable company data.