We’re proud to announce that we have once again passed our ISO 9001 and ISO 27001 audits. Since first achieving certification in 2019, we’ve maintained the highest standards in quality management and information security, ensuring that our systems continue to be secure, reliable, and built with excellence in mind. This achievement reflects our ongoing commitment to delivering high-quality solutions while safeguarding the data of our users.

With organisations relying on our systems to manage sensitive data and support large-scale operations, it’s vital that we meet internationally recognised standards. Re-certification confirms that we’re doing just that, and our customers can continue to work with us with full confidence. Learn more about our other certifications and awards here.

What Our Certifications Mean

These certifications aren’t just checkboxes – they represent the processes and values that underpin everything we build. From custom e-assessment tools for higher education, to nationwide professional development systems, we take a rigorous, structured approach to quality and security at every stage of development.

ISO 9001 – Quality Management

ISO 9001 is the internationally recognised standard for quality management systems. It ensures that organisations consistently meet customer and regulatory requirements through well-defined processes, continuous improvement, and a strong customer focus. At Axia, this certification reflects our structured approach to delivering high-quality digital solutions which are designed, developed, and supported with consistency, transparency, and accountability.

ISO 27001 – Information Security Management

ISO 27001 is the global standard for information security management systems. It sets out the requirements for establishing, maintaining, and continually improving how an organisation manages sensitive data. Our certification demonstrates that we have robust controls in place to protect the confidentiality, integrity, and availability of the information held within our systems, giving customers peace of mind that their data is handled securely and responsibly.

More information about ISO can be found on their website, and links to our certificates can be found below:

• ISO 9001 Certificate
• ISO 27001 Certificate

The post Successful ISO 9001 & 27001 Re-Certification appeared first on Axia Digital.

On the 8th of March 2024, we were pleased to welcome Ben Frisby from Atlas for our annual ISO 27001 re-certification audit, which was conducted online. Representing Axia Digital during this process were Managing Director Richard Etheridge, Development Team Leader Dawid Hetmanczyk, and Business Support Officer Thomas Duke.

We received our audit report just a few days later and are proud to share the results: 30 positive observations and zero rectifications required. This excellent outcome confirms our continued commitment to robust information security practices and maintaining the highest standards set by ISO 27001.

Our certificate can be viewed here.

Successful Observation Areas

Core

The audit highlighted strong performance in the core areas of planning, risk management and operations. Our approach to identifying and addressing potential risks continues to be proactive and well-documented, ensuring that our systems and processes remain secure and resilient. Operationally, we’ve maintained consistent procedures that support the secure delivery of our services, helping us meet both internal objectives and customer expectations with confidence.

Support

In the support category, we received positive feedback for our practices in leadership, training and competence, monitoring and measurement, and document management. This reflects our focus on building a well-informed and capable team, supported by clearly defined documentation and effective oversight. These processes ensure that all staff understand their responsibilities, stay up to date with relevant policies, and contribute actively to our culture of continuous improvement.

Management

Our Information Security Management System (ISMS) was found to be robust, with no gaps across key areas such as policy implementation, corrective actions, internal auditing, and management review. The audit recognised that we not only maintain comprehensive policies, but also regularly assess and enhance them through structured audits and reviews. This reflects our commitment to not just maintaining compliance, but actively evolving our practices to meet changing security challenges.

Statement of Applicability

This section of the audit covered 23 control areas – all of which were successfully met. These included controls around access and asset management, cryptography, system development, and supplier relationships, as well as key operational areas such as physical security, communications, and incident response. Our ability to meet these requirements demonstrates that our security controls are deeply embedded across all parts of the organisation, supporting business continuity and compliance at every level.

Other Certifications and Awards

From international standards to industry recognition, we’re proud of the benchmarks we continue to meet. To learn more about our other certifications and awards, visit our Accreditations page.

The post Further ISO Audit Success appeared first on Axia Digital.

On February 7th 2024, we were pleased to learn that Axia Digital has once again passed its ISO 9001 audit with flying colours. This certification reaffirms our ongoing dedication to delivering high-quality digital solutions and maintaining effective processes across all areas of our organisation.

Our external audits are conducted by Atlas (formerly QMS), a trusted partner who specialises in helping organisations demonstrate and sustain ISO compliance. Their rigorous assessments ensure that our systems not only meet international quality standards, but also continuously improve and evolve.

Our certificate can be viewed here.

Highlights from the Audit

This year’s audit resulted in 9 positive observations, recognising strengths across planning, support, operations, and performance evaluation. The observations were as follows.

Planning: Quality Objectives and Planning to Achieve Them

Our quality objectives are clearly defined, measurable, and aligned with the needs of both our customers and our team. We were recognised for our structured approach to planning, which ensures these objectives are not only documented, but actively pursued through regular reviews and practical implementation strategies.

Support: Competence and Awareness

The audit highlighted our commitment to maintaining a knowledgeable and capable team. Our processes for ensuring staff competence, from recruitment through ongoing development, are robust, and team members clearly understand their roles and responsibilities. Awareness of our quality objectives and how individual roles contribute to them was particularly commended.

Operation: Requirements for Products and Services

We consistently demonstrate a thorough understanding of customer requirements. From initial discussions through to final delivery, our methods for capturing, reviewing, and implementing customer needs ensure that each solution meets the agreed specifications and expectations.

Operation: Control of Externally Provided Products, Processes, and Services

Our systems for managing third-party providers are effective and transparent. We apply the same high standards to our suppliers and external partners as we do to our internal operations, ensuring quality is maintained throughout the supply chain.

Operation: Release of Products and Services

Before any system or service is delivered to a client, it undergoes a clear and documented release process. This includes appropriate checks and sign-offs to ensure the solution is fully functional, meets quality expectations, and is ready for use.

Operation: Control of Nonconforming Outputs

We have strong measures in place for identifying and addressing nonconforming outputs. These procedures help us respond swiftly when issues arise, minimising disruption for users and ensuring that problems are resolved efficiently.

Performance Evaluation: Customer Satisfaction

Customer feedback is central to how we evaluate and improve our work. We were commended for actively seeking input from users and customers, and for using this feedback to guide updates, improvements, and enhancements to our systems.

Performance Evaluation: Internal Audit

Our internal audit process is structured and thorough. Regular reviews help ensure compliance with our own procedures and with ISO standards, and we use audit findings constructively to strengthen our operations.

Performance Evaluation: Management Reviews

Management reviews at Axia are detailed and action-oriented. These sessions provide leadership with insight into performance trends, opportunities for improvement, and progress against strategic goals, ensuring that quality remains a central focus of our decision-making.

Looking Ahead

Passing this audit is more than a box-ticking exercise. It demonstrates that our systems are structured to consistently meet the needs of our customers while encouraging a culture of ongoing improvement which, as a company that develops continuous professional development solutions, is something that we actively promote both in the solutions we deliver and in the way we operate as a business.

To learn more about our other certifications and awards, visit our Accreditations page.

The post ISO 9001 Audit Success appeared first on Axia Digital.

Axia Digital celebrates the success of ISO 27001 and ISO 9001 in early February 2023. QMS International conducted the audit using Microsoft Teams, completing it in nearly two days. The process involved an intense series of meetings, where policies and processes were assessed against the Standard. The auditor reported that our internal audit process documentation and planning procedures were good. He added that it demonstrated the commitment and processes which the company had put in place to maintain certification.

On hearing the news, Chris Peat, Chair of the company’s Board of Directors, said:

“I remember how hard this was to achieve in the first place and to maintain. The fact that you have sailed through this assessment, reflects all your hard work to ensure that the ISO principles are followed in all that we do and that everything now is fully documented.

I also know that it is now a standard requirement of all tenders that we have these accreditations and therefore continuing to be fully accredited, is a significant contribution to maintaining our current position and our future growth.”

Managing Director Richard Etheridge added:

“It certainly didn’t feel like sailing, however, we were able to demonstrate processes and policies where required.  There were a few minor non-conformities identified but our audit processes had already picked them up, they were documented in our logs and work was already in progress to address them.  It demonstrated to the team and the auditor that the internal audit process we’ve  implemented works and all our hard work over the last year has paid off.  As Chris says, ISO certification is increasingly vital in bidding and tendering for business, so we’re delighted to have secured ISO27001 and ISO9001 in February 2023.

A big thank you is due to Dawid and Max, our senior developers,  As always with this type of experience we’ve all learnt something new.  We will certainly strive to improve our internal processes further and we’re looking forward to the next Audit in 2024″

Details About ISO 27001 and 9001

ISO 27001:2013 Certification – Information Security Management

Most organizations have a variety of information security controls in place. However, in the absence of an information security management system (ISMS), these controls often lack organization and cohesion. They are typically implemented as point solutions for specific situations or as conventional practices.

ISO/IEC 27001 requires that management:

• Systematically examine the organization’s information security risks, taking account of the threats, vulnerabilities, and impacts;
• Design and implement a coherent and comprehensive suite of information security controls and/or other forms of risk treatment (such as risk avoidance or risk transfer) to address those risks that are deemed unacceptable; and
• Adopt an overarching management process to ensure that the information security controls continue to meet the organization’s information security needs on an ongoing basis.

ISO 9001:2015 Certification – Quality Management

The ISO 9000 family is a set of five quality management systems (QMS) standards that help organizations ensure they meet customer and other stakeholder needs within statutory and regulatory requirements related to a product or service.  ISO 9000 deals with the fundamentals of QMS, including the seven quality management principles that underlie the family of standards. ISO 9001 deals with the requirements that organizations wishing to meet the standard must fulfil.

Contents of ISO 9001:2015 are as follows:

• Section 1: Scope
• Section 2: Normative references
• Section 3: Terms and definitions
• Section 4: Context of the organization
• Section 5: Leadership
• Section 6: Planning
• Section 7: Support
• Section 8: Operation
• Section 9: Performance evaluation
• Section 10: Continual Improvement

The post Success of ISO 27001 and 9001 Audit 2023 appeared first on Axia Digital.