What is an ISO Certification and What Does it Mean for Your Class Action Settlement?

Data breach and privacy class action settlements put the security and integrity of data at the forefront, especially for class members whose information has been compromised. Class action settlement administrators have an important responsibility to meet the highest data security standards possible and be able to prove so through third party validation.

What is an ISO 27001 Certification?

Simply put: this certification ensures an organization is reaching international standards for data security. Issuing body International Standards Organization sets standards to control the requirements for an information security management system. Meeting those standards and earning the certification means an organization maintains the highest confidentiality and security when managing sensitive information.

To achieve ISO 27001 certification, an independent auditor conducts an audit based on a framework for how a firm establishes, implements, maintains and improves information security management systems for the specific needs of the organization.

ISO 27001 for Class Action Settlement Administrators

Earning an ISO 27001 Certification requires independent auditing of an organization’s commitment to information security. Class action settlement administrators handle sensitive data in each settlement administration matter, and third-party certification affirms for both counsel and class members that sensitive information is secure during the entire administration process.

While data breach and privacy settlements require a particular level of data sensitivity, the reality is that every settlement administered should be treated with the same high standards. Class action administrators handle sensitive information daily, including environmental, wage and hour, consumer, securities, and antitrust class action settlements. Guaranteeing the highest degree of security possible is a top priority.

As a member of the Duff & Phelps family of companies, Heffler Claims Group reaches the highest standards of global data security with an ISO 27001 certification. Global advisor Duff & Phelps and its cybersecurity division Kroll allow our team to offer services that meet the standards of one of the most widely recognized and internationally accepted information security certifications.

Gregory Skoufalos
Gregory T. Skoufalos (Greg) is the Chief Information Officer and leader of our Technology Services Group for Heffler Claims Group. With over 15 years of experience, Greg provides leadership for the continued development of an innovative, responsive and secure information technology environment throughout the organization. He recently restructured the application development team and brought about the creation of a new class action securities litigation application.

Back to Blog


Subscribe to our blog

[eBook]: Tools for Navigating the Class Action Settlement Process

Find Out More

[On-Demand Webinar] Navigating the Settlement Administration Process from Start to Finish

Find Out More

New to Class Action Litigation? Start With Our Free Resources

Find Out More