▲ “ISO 27001” certification for Information Security Management System (left), “ISO 27701” certification for Privacy Information

Management System (right)

[November 6, 2024] KD Navien has simultaneously obtained the international certifications ISO 27001 for Information Security Management System and ISO 27701 for Privacy Information Management System.

KD Navien’s new ISO 27001 and ISO 27701 certifications are the highest authority in information security, established by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). To obtain ISO 27001, an organization must pass a review process covering 93 criteria across four control areas: organizational, personnel, physical, and technical. ISO 27701, on the other hand, requires fulfillment of 49 criteria across eight areas, including personal information protection systems and service stability. In light of the increasing cybersecurity threats and the growing emphasis on information security, KD Navien took the proactive step of voluntarily obtaining these certifications to enhance the protection of customer data.

Obtaining these certifications is part of KD Navien’s effort to solidify its presence as a “comfortable living partner,” using smart home and IoT advancements to create better living environments. It is a measure designed to ensure that all customers, including those using the official shopping mall “Navien House” to purchase various products online, and users of the “Navien Smart” app, which enables smartphone control of KD Navien products like boilers and Navien Mate, can safely protect their personal information. This certification, granted by the highly reputable Lloyd’s Register Quality Assurance (LRQA), officially recognizes KD Navien’s establishment of a global advanced information security management system.

Furthermore, KD Navien has formulated a detailed response manual for information assets based on their risk levels through external consultation for information security certification, while continuously increasing investments to enhance information security at overseas subsidiaries. KD Navien also discloses its data protection activities, including investments and personnel updates, to customers and stakeholders via information security announcements.
 

KD Navien’s Chief Information Security Officer, Park Sung-geun, stated, “We will systematically manage and protect personal information to make sure that our customers feel assured while using our products and services,” adding, “We will continue to work on advancing our information protection management system to the highest global standards.”