ACTIVA International Insurance Company Ltd, a subsidiary of Group ACTIVA (Activa Finances), has become the first general insurance company in Ghana to achieve ISO/IEC 27001:2022 certification for its Information Security Management System (ISMS).
ISO/IEC 27001:2022 is an internationally recognized standard that outlines the requirements for establishing, implementing, maintaining, and continually improving an ISMS. This certification demonstrates that ACTIVA Insurance’s processes, controls, and procedures adhere to the highest industry standards for safeguarding sensitive information.
Benjamin Yamoah, Managing Director of ACTIVA Insurance, emphasized that obtaining this certification strengthens the company’s security framework, ensuring the confidentiality, integrity, and availability of information for both the company and its clients. He noted that this achievement enhances the company’s credibility with customers, partners, and stakeholders, positioning it as a trusted partner in an increasingly cybersecurity-focused business environment.
Yamoah stated, “Our goal is to serve our customers by providing the best insurance solutions that align with international standards. Through this certification, ACTIVA Insurance reaffirms its dedication to adapting to emerging threats and challenges while continuing to provide tailored insurance solutions to its clients.”
ISO/IEC 27001:2022 was published in October 2022, updating the previous 2013 version. The new standard introduces changes such as a revised structure for management system standards and updated controls to address modern cybersecurity threats. Organizations currently certified to ISO/IEC 27001:2013 have until October 2025 to transition to the 2022 version.
ACTIVA Insurance’s achievement reflects its proactive approach to information security and its commitment to maintaining the highest standards in the industry. This certification not only bolsters the company’s internal security measures but also provides assurance to clients and partners regarding the protection of their sensitive information.