How ISO 27001 helped Nudge Global close more deals

As a provider of financial services and advice, Nudge Global needed to handle its customers’ sensitive information in order to provide its services. This naturally meant that potential customers wanted proof and reassurance that Nudge Global had robust data security in place.

Unfortunately, this meant that the decision-making process was encumbered by onerous due diligence, and the length of this process meant it was harder for Nudge Global to close deals. Operations Director Kier Tutt wanted to find a recognised mark of quality that would instantly demonstrate Nudge Global’s commitment to data security, which led Nudge Global to ISO 27001, the Information Security Management standard.

“We wanted to make sure that we had external validation and certification of our approach to information security In order to reassure our clients that we’re continually maintaining and improving what we do.”

What is Nudge Global?

The team at Nudge Global are driven by a shared vision to create brighter financial futures for millions of people. They do that by helping people develop financial wellbeing: the idea that, when people are in control of their money, they’re in control of their lives.

Nudge Global works with over 100 organisations of all sizes to help almost 500,000 employees. The company uses the best software technology along with behavioural psychology (‘nudge theory’) to help its customers make the most of financial opportunities, overcome their financial problems, and make managing money stress free through:

Nudges – personal, timely reminders to take financial action or educational notifications

Education – personalised, bite-sized content that boosts financial knowledge, skills and confidence

Tools – intelligent tools to make it easy, inspirational, and rewarding to budget or save

An audit tailored to you

Visits from our expert auditors are a key part of the certification process. They assess your organisation to see whether it complies with the ISO standard. Understandably, this can seem a little daunting at first.

“The main concerns that we had was that we did not have a huge amount of experience in what was required to achieve the certification and as a small company at the time.”

Our auditors are used to working with a huge range of organisations, and they’ve encountered all kinds of ISO readiness. Some of our clients have prior experience and know plenty about Information Security Management Systems, others are complete beginners. Some are so prepared that they already meet all of the requirements, and others don’t know where to start.

How our auditors support you

After they visit, our auditors will provide you with a detailed report of steps to take to secure your ISO 27001 certificate.

They put together this report by assessing your organisation and identifying gaps in your processes, missing documentation, or other areas that need to be improved before you can be awarded your ISO certificate.

So, whatever your level of experience and preparation, you’ll have a roadmap to ISO certification provided by someone who assesses businesses for a living!

“The British Assessment Bureau always made sure that the audits were done effectively and thoroughly but without any judgement if something is not 100% correct. The suggestions of how we can make things better help us improve for the future, and they take into account the practicalities of the business.”

Remote auditing for a post-COVID world

Speaking of practicalities, the impact of the COVID-19 pandemic meant we saw increased demand for remote audits. Our auditors are well-equipped to conduct their audits remotely, meaning that you can keep your ISO 27001 standard up-to-date without compromising your COVID-19 security.

“This year we completed the audit remotely, and I thought that this was particularly well run, mainly due to the level of preparation that was put in by the British Assessment Bureau upfront.”

How ISO 27001 has already helped Nudge Global

Providing financial information to another company requires careful decision-making. But Kier has already seen how ISO 27001 makes that decision easier for his customers.

“The biggest benefit of the certification is that it acts as a quality mark for our business and really allows us to demonstrate how serious we are about information security. It prevents clients from having to undertake many more onerous due diligence processes that they would otherwise be required to do internally. It speeds up the decision-making process of our potential clients much more.”

In an age where data security is becoming a greater and greater concern, possessing an ISO 27001 certificate proves to your customers that your data security is independently verified by an external ISMS expert.
This peace of mind makes it easier for a potential customer to choose your organisation to work with, and helps you to win new business.

“Without the certification I am certain that we would have lost business and would not have grown the company as quickly as we have.”

Find out more

If you think that ISO 27001 could help your business too, simply enter your details below and one of our experts will get in touch and get you started towards the kind of success Nudge Global is enjoying.