Cato is ISO/IEC 27001:2013 certified, validating the company’s risk-based approach for implementing, maintaining and continually improving its Information Security Management System (ISMS). This also indicates Cato’s compliance with best practices for identifying, assessing, evaluating and treating information security risks.

Cato achieved ISO/IEC 27017:2015 certification. This certification addresses cloud-related information security risks and threats and attests that Cato’s services are in alliance with internationally recognized best practices.

Cato is ISO/IEC 27018:2019 certified. This certification provides guidance for cloud service providers in assessing and implementing advanced controls to safeguard Personally Identifiable Information (PII).

Cato is ISO/IEC 27701:2019 certified and committed to improving its Privacy Information Management System (PIMS).
This standard outlines a framework for managing data privacy for Controllers and Processors of Personally Identifiable Information (PII).

Cato’s service and company complies with the UK Cyber Essentials requirements set forth by the British National Cyber Security Center. Cyber Essentials is an effective, government backed scheme that helps organizations protect themselves from a range of the most common cyber attacks.