Ivan Zhakata
Herald Correspondent
Cimas Well being Group has upgraded to the ZWS ISO/IEC 27001:2022 certification, a globally recognised data safety commonplace that strengthens the safety of members’ and shoppers’ information.
The most recent certification marks a major transition from the ISO/IEC 27001:2013 commonplace, which the group beforehand attained as a part of its digital transformation programme, turning into the primary medical companies supplier in Zimbabwe to attain that milestone.
Cimas Well being Group chief govt, Mr Vuli Ndlovu, mentioned the event displays the organisation’s dedication to confidentiality, integrity and operational excellence.
“The ISO/IEC 27001:2022 certification displays our alignment with internationally recognised requirements and demonstrates our dedication to strong data safety administration,” he mentioned.
Mr Ndlovu mentioned the group applied main upgrades to its data know-how infrastructure and strengthened key safety processes, together with workers coaching, threat assessments and governance frameworks, to fulfill the brand new commonplace.
The processes have been subjected to a rigorous audit by the Requirements Affiliation of Zimbabwe on the group’s head workplace in Borrowdale, Harare.
He mentioned the certification confirms that Cimas operates a world-class Info Safety Administration System (ISMS) designed to safeguard the safety, integrity and confidentiality of members’ and shoppers’ data.
Mr Ndlovu mentioned the organisation has additionally established complete cyber-incident detection, response and administration methods to successfully monitor and deal with potential threats.
He mentioned the ISMS governs how know-how, personnel and inner processes deal with delicate information, guaranteeing it’s securely managed throughout the organisation.
The certification assures members, companions and stakeholders that their data is dealt with according to internationally recognised greatest practices.
Mr Ndlovu mentioned the group values the non-public, confidential and privileged data entrusted to it and has put in place rigorous management measures to make sure it stays absolutely protected.
