The Independent Information Security and Privacy Rating Institute IISRI® was founded in 2016 to provide a more accurate security and privacy assurance method to the public. Security and Privacy certifications, like ISO27001, PCI DSS or SOC2, are issued after passing a minimum threshold. This binary approach does not leave much room to understand how well organisations protect customer data. Ratings of the security and privacy certifications, however, allow customers to see to what extent an organisation has put controls and can be entrusted your data.

​

In short, we audit, rate and certify the security and privacy of service providers.
The certifications and ratings are then published on our online public register for customers
and partners to view. The ratings are standardised, enabling service providers to benchmark themselves among other providers.

IISRI® has been providing security and privacy services since 2016 and is now the leading
provider of information Security and Privacy certifications with Ratings. Our global team
comprises regional and sector experts from the industry and researchers from universities
with qualified auditors for, among others, ISO27001, ISO27701, GDPR, PCI DSS, SOC 2 and
NIST. Our headquarter is in New Zealand (Auckland) with branches in Netherlands, Poland
and Indonesia.

We aim to provide all service providers with public security and privacy ratings. This
higher transparency will encourage certified service providers to safeguard
valuable customer data constantly. Establishing trust with the consuming their services.