EPC, Inc., (EPC) one of the world’s largest IT asset disposition (ITAD) providers, is pleased to announce that it has achieved ISO 27001:2022 information security, cybersecurity and privacy protection certification in the U.S.
ISO 27001:2022 is a globally recognized standard issued by the International Standards Organization (ISO) for information security management systems (ISMS). Its framework ensures that organizations meet regulatory requirements while maintaining continuous improvement and enhancing customer satisfaction. Achieving ISO 27001 certification demonstrates that EPC operates under a globally recognized Information Security Management System (ISMS), built on a rigorous, risk-based framework to protect the confidentiality, integrity and availability of data.
“This certification independently validates that our policies, processes and controls are not only documented but actively managed, audited and continually improved,” said Cody Luzynski, vice president of compliance. “Working in tandem with our existing certifications, NAID AAA for secure data destruction and e-Stewards 4.1 for responsible electronic recycling, ISO 27001 strengthens our security posture from governance to operation execution. Together, these standards provide layered assurance that data is protected through its lifecycle, from intake to final disposition.”
“This achievement reflects the hard work and depth of EPC’s IT department, whose expertise ensures that security is embedded into every level of our operations, said Pat Laughlin, president of EPC. “This certification truly is a reflection of our ongoing commitment to our customers.”