Insight
Deepinsight is ISO 20071 certified
Published: 20. feb. 2026
Author: Jarle Kittilsen
At Deepinsight, a strong security culture is second nature—from management to every individual employee. As part of the healthcare sector, we carry an extra responsibility to deliver safe and secure services that comply with applicable standards and regulations. We are certified according to the leading international standard for information security, ISO 27001. Learn more about what this means and how we work in this article.
Our approach to security
Deepinsight has established an Information Security Management System (ISMS), which, as of January 202,6 is also ISO 27001 certified. The system ensures continuous improvement and compliance with relevant security and privacy standards and frameworks, including the Norwegian “Normen,” GDPR, NIS2, and relevant controls from ISO 27001 Annex A.
We apply a risk-based approach to security, balancing the need for innovation with the requirements placed on us as a secure supplier in the healthcare sector.
Security is built into every phase of our product development lifecycle, and the platform we deliver is designed according to “Zero Trust” principles.
This approach provides a solid foundation that safeguards the confidentiality, integrity, and availability of our customers’ data.
What does ISO 27001 entail?
ISO 27001 is an internationally recognized standard that sets requirements for how organizations manage and protect information. The certification confirms that Deepinsight has established a structured Information Security Management System (ISMS) with clear processes, risk assessments, and continuous improvement.
The certification is regularly audited by an independent third party and serves as proof that security efforts are both well-established and effectively implemented in practice.
What does this mean for you as a customer?
For our customers, ISO 27001 certification provides increased confidence and predictability. You can be assured that data is handled securely, that risks are assessed regularly, and that security is an integrated part of the product. In addition, incidents are handled in a structured and professional manner should they occur.
Continuous improvement of our security efforts
Security is not static. The threat landscape changes, technology evolves, and the requirements placed on organizations continue to increase. That is why we conduct regular risk assessments, internal and external audits, and continuously improve routines and measures. ISO 27001 is an important part of this work and helps ensure that security remains a natural and prioritized part of Deepinsight.
Questions about security at Deepinsight?
We value open dialogue about security and compliance. Feel free to contact us if you have any questions about how we work with information security, privacy, and risk management.
You can also find more information in our Trust Center.
