Zurich, 28 April 2025 – Tresorit, the data security specialist of Swiss Post Communication Services, has successfully completed its ISO 27001:2022 surveillance audit, reaffirming its unwavering commitment to the highest security standards.

Achieving and maintaining ISO 27001:2022 certification is a rigorous, multi-year process. While the certification remains valid for three years, organizations must undergo annual surveillance audits to ensure that security controls remain robust and evolve alongside emerging threats. Tresorit successfully passed the full recertification audit last year and has now demonstrated once again that its security measures meet and exceed industry standards.

"ISO certification is not just about meeting a requirement — it’s about embedding security into every level of our organization. At Tresorit, we continuously evolve our security practices to anticipate new risks, protect customer data, and maintain trust in an increasingly complex digital landscape," commented Turul Balogh, CISO at Tresorit, on the successful surveillance audit.

A culture of continuous security

Maintaining ISO 27001:2022 certification is not a one-time achievement but an ongoing effort requiring constant monitoring, updates, and commitment. Tresorit embeds a security-first mindset into its daily operations, conducting continuous risk assessments and proactively adapting its security controls to stay ahead of evolving cyber threats. By prioritizing future-readiness, the company ensures that its data protection solutions remain resilient in a rapidly changing digital environment.

For many of Tresorit’s customers — particularly those in highly regulated industries like finance, healthcare, and legal services — data security is critical. ISO 27001 certification provides assurance that Tresorit meets and exceeds the highest security and compliance standards, reinforcing trust and reliability. Beyond being a mark of excellence, maintaining this certification is also a legal obligation towards our customers, ensuring that their sensitive data is always handled with the utmost protection.

The importance of ISO 27001:2022 certification

ISO 27001 is one of the world’s leading standards for information security management, defining how companies should structure their systems and processes to protect sensitive information from potential threats and risks. The certification is based on a comprehensive information security management system that includes measures to guard against cyberattacks, data loss, unauthorized access, and other threats. Additionally, the standard covers infrastructural aspects such as organization, personnel, buildings, and their surrounding environments.

The latest ISO 27001:2022 update ensures that companies do not just comply with static regulations but continuously improve their security posture to combat evolving risks. For Tresorit, maintaining this certification is a clear reflection of our ongoing commitment to protecting customer data and securing cloud-based environments.

About Tresorit

Tresorit is an end-to-end encrypted productivity solution for ultra-secure collaboration. It offers functions for the secure administration, storage, synchronization, and transfer of data. More than 11,000 organizations use Tresorit to protect confidential data and share information securely. The company's main shareholder has been Swiss Post since July 2021.