ISO certifications
The International Organization for Standardization (ISO) is a worldwide federation for the development and publication of standards composed of representatives from the national standards bodies. The organisation was founded on 23 February 1947 and develops global standards for industry and commerce, the so-called standards ISO.
It is about the validation of compliance with certain standards, regarding various products, their production processes, their manufacturing materials, qualities, organisational structure in production, etc.
ISO certification is not a license that authorises or prohibits an activity. To put it simply, it is just a certification – attestation that a company adheres to certain rules regarding the quality assurance of the products or services, management, production, etc. and, as long as it continues to adhere to these rules, it maintains such certification.
It is an independent authority that determines the “quality” of an enterprise, thus ensuring the consumer that it is an enterprise that complies with all standards and that quality is assured, throughout the production process of the product.
Therefore, when a company or organisation is ISO certified, then, to put it in a simple way, it showcases quality and inspires more confidence in its customers and partners.
Crowe Greece is certified to the following standards:

ISO 9001

The ISO 9001 standard is the international standard for Quality Management Systems (QMS) as published and implemented by the International Organization for Standardization (ISO).

The latest revision of the standard was made in 2015 and its full name is ISO 9001:2015. It provides a set of guidelines to ensure that there is no important element omitted that a Quality Management System needs to be successful.

In fact, it is the collection of documents that defines the set of internal rules governing how a company or organisation creates and delivers a product or service to customers.

ISO 27001

ISO 27001:2013 (IT Information Management System) is an international standard for information security management.

This standard describes the requirements an organisation must meet in order to comprehensively and effectively manage its information security.

The standard is addressed to all companies or organisations, regardless of size and sector of activity, that wish to adopt a way of managing information security in a comprehensive manner.

Its implementation is particularly important for enterprises that deal with confidential information, such as records management companies, call centers-sales promotion, security, healthcare organisations and IT service companies.

ISO 27701

The international standard ISO/IEC 27701:2019 is an extension to standards ISO/IEC 27001 and ISO/IEC 27002 and was designed to enhance the existing information security management system with additional requirements in order to develop an integrated Privacy Information Management System (PIMS).

ISO 27701 defines the management requirements for personal data and provides guidelines for PII controllers managing access to personally identifiable information and PII processors processing personally identifiable information.

It applies to all organisations that wish to ensure, in addition to information security, the protection of the personal data of their employees, customers and partners. In our country, a relevant institutional framework has already been set for its mandatory implementation in the education sector, which is expected to be extended to other sectors of activity.

ISO 22301

The focus of ISO 22301:2019 is to ensure the business continuity of products and services delivery after the occurrence of catastrophic events (e.g. natural disasters, man-made disasters, etc.).

This is achieved by identifying business continuity priorities (through business impact analysis), what possible events may affect business operations (through risk assessment), determining what needs to be done to avoid such events, and normal operations in the shortest possible time (e.g., risk mitigation or risk remediation).

Therefore, the main philosophy of ISO 22301 is based on impact analysis and risk management: to find out which activities are most important and which risks can affect them, and then systematically address these risks.

ISO 37001

ISO 37001 is an international standard for public, private and non-profit Organisations and sets the requirements for an organisation to create an anti-bribery Management System and comply with the relevant legislation.

The purpose of developing an Anti-Bribery Management System is to foster an anti-bribery climate within the organisation in order to enhance trust and transparency and lead to the overall improvement of an organisation's workflow.

ISO 14001

ISO 14001:2015 is an international standard that defines the requirements of an environmental management system (EMS).

In recent years, there has been increased awareness among the public and consumers regarding environmental issues. As a result, companies that implement a certified environmental management system have a competitive advantage.

Shopping Basket