BizAway, the Italian scale-up operating in the business travel sector, has officially obtained the ISO/IEC 27001:2022 certification, the leading international standard for information security management. This important recognition confirms the company’s ongoing commitment to ensuring the highest levels of data protection and to building a secure and reliable digital environment for clients, partners, and collaborators.

Obtaining this new certification marks a significant evolution from the previous ISO/IEC 27001:2013 certification, already held by BizAway, and highlights the company’s dedication to staying aligned with the latest regulatory and technological updates in the field of cybersecurity.

Strengthening the Information Security Management System

The ISO/IEC 27001:2022 standard defines the requirements for an Information Security Management System (ISMS), outlining best practices for identifying and managing risks related to the confidentiality, integrity, and availability of information. The adoption of this updated standard demonstrates that BizAway has implemented robust controls and effective processes to prevent, detect, and respond to potential data security threats.

“After months of work, collaboration, and dedication from the entire team, we are pleased to announce the achievement of this certification. It represents a significant step forward from the 2013 version, not only in terms of technical requirements but especially in terms of a broader, more integrated approach to information security. It’s not just a certificate — it’s a concrete demonstration of how seriously we take data protection in our daily work and in our relationships with clients, partners, and other stakeholders,” says Flavio Del Bianco, CTO/CPO of BizAway.

A structured certification process

Achieving the certification was the result of a long and thorough process of analysis, planning, and implementation, culminating in an audit conducted by an accredited certification body. BizAway demonstrated its ability to:

• properly identify and manage cybersecurity risks;
• protect both corporate and customer data throughout its lifecycle;
• adopt technical and organizational security measures in line with international standards;
  
• ensure ongoing training of its staff on information security.

An added value for clients

The ISO/IEC 27001:2022 certification offers a solid guarantee of reliability for all companies that rely on BizAway to manage their business travel.

“In a context where data security is increasingly critical — especially when handling sensitive information related to travel, documents, payments, and personal preferences — this recognition further strengthens BizAway’s position as a secure and cutting-edge technology partner,” says Luca Papinutti, IT & Security Coordinator.

Further proof of BizAway’s commitment to security is the recent implementation of the 3D Secure system for all payments made through its platform, offering clients an additional layer of protection during the purchase process.