IISRIWhere security meets privacy

Auckland New Zealand

Why We Exist

The functioning of our society depends heavily on sharing and processing information with confidence. The ability of organisations to protect their own data and that of their customers is essential for maintaining and increasing this confidence. Having this confidence enables customers or vendors to provide online or offline their private or commercially classified data to these organisations. However, the information shared with the public by organisations about their information security and privacy posture is, most likely unintentionally, not always clear, transparent or complete, if not entirely absent. Consequently, these customers or other stakeholders, like vendors or insurers, cannot always make an informed decision as to (further) engage with the organisation to share confidential data or the use of their goods or services. Also, these stakeholders have no universal mean to compare organisations on the basis of information security and privacy so that they can choose the right service provider aligned with their security and privacy risk appetite.

Our Goal

The Independent Information Security and Privacy Rating Institute (IISRI®) has been founded to help organisations to improve their security and privacy posture and to provide the public with an independent opinion about the information security and privacy posture of these organisations and their services. IISRI contributes as such to a more transparent and safer society. IISRI® strongly believes that this transparency about information security and privacy of organisations through public visibility of security and privacy ratings will encourage organisations and governments to constantly improve their security and privacy posture and their safeguarding of our valuable data.

Who We Are

IISRI® is the world’s leading provider of public information security ratings on profit and non-profit organisations, including governments, and their services. Our global team consists of analysts, managers, regional and sector experts from the industry and researchers from the university. Our ratings aim at providing transparency around information security and privacy so that our independent opinion increases trust between market participants driving economic growth.

What We Do

We help organisations to improve their information security and privacy postures and offer them the option to publish their rating (rating as a service). Our expert team assess information security and privacy postures of governments, organisations, sectors, services and products and provide recommendations and support to the concerned organisations on further improving this posture. We monitor for this purpose external factors, such as new security and privacy standards, regulations (such as GDPR), technologies, threats and trends, that effect our society. We form our opinions on the basis of these external factors and information that is relevant for their security or privacy posture and publicly available or provided to us by the assessed organisations. When we perform the assessments upon the request of an organisation, the organisation can choose to publish their rating on our website.


Although IISRI® might cooperate with the assessed organisations during the assessments, IISRI® is completely independent in forming their final opinion. While being independent we act according to code of professional conduct and ethics and will never publish sensitive information of organisations that could endanger them or their people. All the consultants working for IISRI® have been screened to ensure that there is no conflict of interest between the consultants and the assessed organisations

Any information, materials and services provided on this website are under Terms and Conditions. By using and/or accessing this website you agree with them. If you don't agree, leave this website.

This website use cookies. You can find our Privacy Policy here.