iFactFind today announced that it has successfully achieved ISO/IEC 27001:2022 certification, the internationally recognised standard for Information Security Management Systems (ISMS), further reinforcing its commitment to the highest levels of data security, privacy, and risk management.
The certification was independently audited by Sensiba (formerly AssuranceLab), a globally recognised leader in security and compliance assurance.
This milestone builds on iFactFind’s recent SOC 2 Type II and GDPR Type 2 certifications, strengthening a comprehensive, globally aligned security and compliance framework designed to protect sensitive client information.
ISO/IEC 27001:2022 certification demonstrates that iFactFind has implemented a robust, organisation-wide Information Security Management System to systematically identify, assess, and mitigate risks. It validates that security is embedded across people, processes, and technology, and is continuously monitored and improved.
A Security-First Approach
“As CTO, achieving ISO/IEC 27001:2022 is a defining milestone for iFactFind,” said Sahil Matta, CTO of iFactFind.
“Security is not just a requirement for us – it is a core principle that underpins every decision we make. This certification reflects the maturity of our security practices and our ongoing commitment to protecting the sensitive financial data entrusted to us by advisers and their clients.
“Building on our SOC 2 Type II and GDPR Type 2 achievements, ISO 27001 formalises our approach to risk management, governance, and continuous improvement. It ensures that security is embedded into our culture, our development lifecycle, and our day-to-day operations.”
Leadership Perspective
Paul Moran, CEO of iFactFind, added, “This is a significant milestone for iFactFind and a reflection of our long-term commitment to building a platform that advisers can trust. As we continue to grow across Australia, Ireland, and beyond, maintaining the highest standards of security and data protection remains a top priority for our business.
Achieving ISO/IEC 27001:2022 provides our clients with confidence that we are operating in line with globally recognised best practices and that their data is in safe hands.”
What This Means for Clients
For financial advisers and institutions using iFactFind, ISO/IEC 27001:2022 certification provides independent assurance that:
- Sensitive client data is managed within a structured and audited security framework
- Risks are continuously identified, assessed, and mitigated
- Security controls are consistently applied and continuously improved
- The platform aligns with global best practices and regulatory expectations
This certification is particularly significant as iFactFind continues to expand across Australia, Ireland, and international markets, where strong data protection and compliance standards are critical.
Continuous Improvement and Ongoing Assurance
ISO/IEC 27001 certification is not a one-time achievement, but part of iFactFind’s ongoing commitment to continuous improvement, regular independent audits, and proactive risk management.
iFactFind will continue to work closely with Sensiba as its external audit partner to ensure ongoing compliance, transparency, and trusted assurance for its clients.
“Our journey doesn’t stop here,” added Sahil Matta. “We will continue to invest in strengthening our security posture, enhancing our ISMS, and ensuring that our platform remains resilient, secure, and trusted as we scale globally.”
