INFORMATION SECURITY
Information is at the core of everything Wallbrook does. The process of collecting and analysing data relating to other people is one we take very seriously: they have rights over how that data is used, and we have obligations while using it. Taking the utmost care with data is one of the day’s leading priorities, and is crucial to the future of our industry.
We recognise the responsibility this brings and want to be at the forefront of meeting that challenge. Our firm is built with this in mind, and we have taken industry-leading measures to make sure we treat information properly.
GDPR
Data-privacy laws are strengthening and sharpening all over the world. The EU General Data Protection Regulation (GDPR) heralded a new era of data protection, as can be seen in how laws and regulations in other key markets across the world are following its lead. As such, Wallbrook sets GDPR as the bar across all of our international operations, where practicable and not in conflict with applicable local legislation. We work to the spirit and the letter of the law.
ISO27001
We are proud to be one of the very few firms in our space certified to the ISO 27001:2013 standard for information security – in our case by Lloyd’s Register, one of the world’s top-tier certification bodies. The standard requires an all-encompassing and systematic approach to securing your information. It looks beyond granular controls, such as IT measures and technical features, to fundamental questions about how committed your stakeholders are to these principles and how engaged you are in making sure you stick to them. And it is not a one-off assessment process: keeping your certification requires continuous review and progression, verified by annual audits and periodic full recertification.
Many can say they follow ISO27001’s principles, but only those certified by reputable bodies can demonstrate an independent assurance they have got it right – and have to prove they continue to do so every year.
This tallies closely with our own view of how intelligence firms should secure the data they use. We are delighted to have the opportunity to demonstrate our commitment to this aim. Most importantly, it has reassured current and prospective clients looking for help with their most sensitive matters, as well as the subjects of our investigations, that we are not only subject-matter experts and analysts. We are a safe custodian of data.