Cyber Essentials Plus is the audited version of the Cyber Essentials information security standard. Cyber Essentials requires us to have a number of technical and procedural controls in place which improve information security in order to mitigate common cyber threats. Cyber Essentials Plus is a series of tests that provide a further level of assurance that these technical controls have been successfully implemented and that CDL has met the necessary fundamental requirements for firewalls, secure configuration, user access control and malware controls. Download the certificate here

ISO 22301 is the internationally recognised independent security standard for Business Continuity. This certification demonstrates the ability to understand and prioritise threats to the business, minimise disruption and continue operation in the event of an incident. As part of our ongoing commitment to ensuring business continuity, we have a well-developed, structured, and rehearsed BCP to assist our operational teams in recovering from an incident as quickly as possible. Our approach to business continuity will help ensure that the most important functions, services, and systems are up and running in the shortest possible time frame, minimising the impact on CDL operations. Download the certificate here If you would like to verify the validity of the certificate displayed above, you can enter CDL's Certificate Number "13941" on the website found here.

ISO 27001 is a globally recognised standard which specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system. It is inclusive of all policies and procedure that relate to an organisation's risk management of physical and technical controls. Through applying the necessary steps to conform with this standard, CDL can systematically identify, control and eliminate security risks; providing assurances that data is safe. Download the certificate here If you would like to verify the validity of the certificate displayed above, you can enter CDL's Certificate Number "13941" on the website found here.

ISO 27701 is the international standard for Privacy Information Management. It is the data privacy extension to ISO 27001 and demonstrates that mechanisms are in place to keep personal data safe. It provides assurance that a third party has independently verified that CDL's Privacy Information System meets an international industry standard aligned to the GDPR. Download the certificate here

ISO 14001 is an internationally recognised standard for environmental management. To achieve this certification CDL have implemented the required framework for an effective environmental management system aimed at supporting environmental protection and the prevention of pollution. Through achievement of ISO 14001 we can provide assurance to our clients, stakeholders and employees that our environmental impact is being continually measured, monitored and improved. Download the certificate here If you would like to verify the validity of the certificate displayed above, you can enter CDL's Certificate Number "13941" on the website found here.

 

SOC 1 Type 2 equivalent ISAE 3402 Type 2 is an independent audit that CDL undergoes annually to evaluate the security controls used to protect customer historical financial information in the cloud. It evaluates the design and effectiveness of a service organisations internal systems and security controls, and whether the controls operated effectively over the period of the report. If required, please download directly from the CDL client portal, or contact your SDL or Account manager to obtain the full ISAE 3402 report.

 

SOC 2 Type 2 equivalent ISAE 3000 Type 2 is an independent audit that CDL undergoes annually to evaluate the security controls used to protect customer data in the cloud. It evaluates the design and effectiveness of a service organisations internal systems and security controls, and whether the controls operated effectively over the period of the report. If required, please download directly from the CDL client portal, or contact your SDL or Account manager to obtain the full ISAE 3000 report.

PCI-DSS compliance CDL are a level 1 Service Provider under the Payment Card Industry Data Security Standard (PCI DSS) and undergo an annual audit, verifying secure handling of payment card information. If required, please contact your account representative to obtain a copy of CDL's Attestation of Compliance (AOC).