We manage risk through tiers – robust lines of defence which spread accountability throughout the organisation. Immediate controls happen through the automated monitoring of each and every communication that we process. Then, we have internal audit - a layer of independence within the business - which validates that processes are happening correctly. This then flips to an external view, validating that our risk framework is operating as it should do against certified regulations or client expectations or consultancy best-practice.
So, we are not relying on one person or one process to ensure that we stay on track. We are constantly evaluating and driving improvement – right up to board level where our ownership of risk and compliance is regularly challenged and reviewed.
It’s about being that ‘safe pair of hands’ for clients. Understandably, risk management and business continuity strategies are always a key part of any discussion with clients and prospects – the penalties for not being robust and meticulous are well known. Having the correct certifications in place is critical, but we take these as the foundation for continuous improvement, not as the end goal.
Ultimately, we’re providing businesses with total reassurance around their communications compliance, providing the safety net that enables these organisations to flex to new ways of working and to focus on bottom-line growth. As the saying goes – “opportunity and risk come in pairs.” By managing the risk, we are providing clients with the platform to explore new opportunities.
|PCI Data Security Standard 3 – Tier One – QSA Audited|
|Cyber Essentials Plus|
|ISO 27001 – Information Security Management|
|Data Protection Act – Registered as a Data Controller with the ICO|
|C&CCC – Cheque Printer Accreditation Scheme (CPAS)|
|The UK Cards Association PIN Mailer Security Accreditation Scheme|
|Strict employment policy with security vetting to DBS Check Level 1|
|ISO 9001 – Quality Management System|
|BS 10008 – Electronic Information Management System|
|PRINCE2 & Agile – Hybrid Delivery Approach|
|ISO 14001 – Environmental Management System|
|Forest Stewardship Council® – Chain of Custody Licence No. C015977|
|Programme for the Endorsement of Forest Certification – Chain of Custody Licence No 16-33-643|
Health & Safety
|ISO 45001 –Occupational Health and Safety Management|
|ISO 22301 – Business Continuity Management|
|Credit Service Association (CSA)|
|British Printing Industries Federation (BPIF)|
|Association of Electoral Administrators (AEA)|