Our Accreditations & Standards

eSign is proud to be ISO 27001 certified. ISO 27001 is the world’s best known standard for information security management systems and their requirements. It provides guidance for establishing, implementing, maintaining and continually improving an information security management system.

eSign is proud to be ISO 9001 certified, demonstrating our commitment to delivering high-quality services and continuously improving our processes. ISO 9001 is an internationally recognised standard for quality management systems (QMS).

Our ICO accreditation determines that our processing of personal data complies with GDPR requirements, in line with the accountability principle. The accreditation encourages the use of data protection certification mechanisms as a means to enhance transparency and compliance with GDPR.

Cyber Essentials is a UK Government backed scheme that certifies that our defences will protect against a wide variety of the most common cyber-attacks. These attacks are looking for targets who do not have the Cyber Essentials technical controls in place.

eSign is the only electronic signature provider on the Public Service Network. The PSN is the Government’s high security network, which enables public sector organisations to work together, reduce duplication and share resources.

The CCS plays an important role in helping the UK public sector save money when buying common goods and services. We are a Crown Commercial Service Provider, which means we are trusted by the Government and public sector organisations to provide high-quality and high-security solutions.

eSign maintains compliance with the latest version of the PCI Data Security Standard (DSS) to ensure safe and secure handling of customer payment information. We adopt a range of stringent data security standards and resources to ensure safe payments for our customers.

eSign remains compliant and works to ISO 15489-1:2016 standards. These standards define the concepts and principles from which the creation, capture and management of records are developed. We have a number of policies and processes in place to ensure the effective management of records and record controls.

eSign works to ISO 3001 standards, ensuring that we continuously improve the identification of opportunities and threats and effectively allocate and use resources for risk treatment. We follow strict policies and practices, regularly undertaking internal and external audits to manage potential and prevent risks.

The Global LEI index is the only global online source for open, standardised and high quality legal entity data. An LEI is a reference code used across markets and jurisdictions to uniquely identify a legally distinct entity that engages in a financial transaction.

eSign has met all requirements in becoming fully registered within the Financial Supplier Qualification System (FSQS), a standard used by major UK banks and financial organisations when selecting suppliers.

eSign’s processes are in full alignment with the core principles and obligations of the NIS2 directive. NIS2 aims to improve the EU’s overall cybersecurity posture by expanding the scope of covered entities and establishing uniform risk management and reporting obligations.