Security

Our Committment

1WorldSync has an ongoing commitment to information security at every level. We strive to ensure the security of your data and information across all areas of our organization. The continued attainment of SOC 2 Type 2 Attestation and ISO 27001 demonstrates our commitment and adherence to security best practices across our organization.




SOC 2 ATTESTATION

1WorldSync has obtained SOC 2 Type 2 attestation for the period from July 1, 2023 to June 30, 2024.

A-Lign, an accredited auditory body, has determined that the controls that 1WorldSync has in place over the in scope systems throughout the period from July 1, 2023 to June 30, 2024 provide reasonable assurance that our service commitments and system requirements were achieved based on the trust services criteria relevant to Security, Availability, and Confidentiality (applicable trust services criteria) set forth in TSP section 100, 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy, in AICPA Trust Services Criteria.

The 1WorldSync-2024-Type 2 SOC 3-Final Report summarizes the system and findings. Further information can be made available upon request.


ISO 27001 CERTIFICATION

View Certificate (PDF)

1WorldSync successfully completed its ISO 27001 recertification audit in June 2025. ISO/IEC 27001 is an information security management system standard published in October 2022 by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).

The ISO/IEC 27001 certification was conducted by leading compliance assessor A-LIGN, a technology-enabled security and compliance partner. A-LIGN is an ISO/IEC 27001 certification body accredited by the ANSI National Accreditation Board (ANAB) and United Kingdom Accreditation Service (UKAS) to perform ISMS certifications.

ISO 27001:2022 is an information security management system standard published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). It specifies security management best practices and comprehensive security controls following the ISO 27002 best practice guidance.

A-Lign conducted the Audit of 1WorldSync in June of 2025.

More information on the ISO 27001 certification and report can be obtained upon request.


Who issued the certification and attestation?

1WorldSync’s certification and its attestation report are both issued by A-lign, an independent and accredited certification body based in the United States, on successful completion of formal audit processes.

What 1WorldSync services are in-scope for the certification?

1WorldSync Product Content Management Systems within scope include: Item Management, Product Introduction, Digital Asset, User Management, Communications Hub, Data Sync Direct PIM, Item Integration Gateway, and Product Bundles Services hosted in the Cyxtera Data Centers (CH3 Elk Grove Village, IL and NJ3 Piscataway, NJ) Google Cloud, and AWS data centers.

Get in touch today to see how we can improve your product information management experience.