Yandex.Metrica has successfully passed the annual ISO 27001 audit, which confirmed its full compliance with international information security standards.
The auditors evaluated the management processes, the use of technologies and equipment, and other parameters for compliance with the requirements of the International Organization for Standardization. The analysis showed that the Metrica risk management system is built and develops on the basis of the best world practices and fully provides the necessary information protection.
Sergey Lisitsyn, the Head of Analytical Services at Yandex has been quoted on the Yandex Metrica blog:
Data security is our top priority. In our work, we adhere to information security standards, take care of confidentiality and data integrity. To do this, we regularly conduct an independent audit, which confirms the compliance of our analytical services with world standards for working with data.
ISO 27001 is a global standard that approves the requirements for information security management in companies. Metrica first received ISO 27001 certification in 2019 and has been confirming it for two years now.
In May of this year, Yandex presented a sustainable development agenda – a list of priority areas for the company in the social and environmental spheres and in the area of corporate governance (ESG). According to the document, information security is one of the priority areas for the sustainable development of the group of companies.