ERI achieves ISO 27001 certification

ERI, an IT asset disposition (ITAD) company based in Fresno, California, says it successfully has achieved ISO 27001:2022 (ISO/IEC 27001) certification, a globally recognized standard for information security management systems.

The ISO 27001 certification is awarded to organizations that meet stringent criteria for establishing, implementing, maintaining and continually improving information security management practices. In a news release, ERI says the certification is a testament to its commitment to maintaining the highest standards of information security for customers, partners and stakeholders.

RELATED: ERI’s RecycleNation honored by blog service

ERI Chairman and CEO John Shegerian says achieving ISO 27001 certification further demonstrates the company’s ongoing commitment to security, data protection and the responsible recycling of all electronic devices.

“Our partners and customers can feel 100 percent confident that we have made and continue to make every investment and operational protocol to establish and maintain the highest level of security and compliance in the industry," he says. "Our successful ISO 27001 certification application and process are proof that our systems and controls are state-of-the-art for handling data and can be fully trusted every step of the way.”

The company says the new certification arrives on the heels of it successfully completing its SOC 2 Type II audit once again this year, “making ERI the first and only SOC (Service Organization Controls) 2 Type II and ISO 27001 certified ITAD and e-waste recycler in the industry.”

ERI also recently received the highest average star rating from customers (4.5 out of 5) in Compliance Standards LLC’s 2024 ITAD Reputation Ratings report, which gathers feedback from customers of the 30 leading U.S.-based ITAD companies that serve enterprise-class clients in the U.S.

“With businesses and public sector organizations experiencing damaging data losses and security breaches, service providers that receive ISO 27001 certification and take concrete measures to solidify their data security practices, such as ERI, will inevitably maintain or even gain competitive advantage with attentive clients,” says David Daoud, principal analyst and president at Boston-based Compliance Standards LLC. “Furthermore, such certification is evidence of a practice within ERI that will primarily benefit clients who are eager to thwart data breaches and avoid noncompliance with a growing body of regulations and laws.

“ERI’s ISO 27001 certification is no surprise considering the company’s business culture that favors process improvements and the adoption of best practices,” Daoud continues. “This commitment helps ERI achieve some of the best scores in the ITAD industry in the United States, with excellent feedback from both its customers and its employees, based on Compliance Standards’ research.”

ERI also is ISO 14001, ISO 9001 and ISO 45001 certified and is a longtime dual R2 and e-steward certified organization.