AITRICS Achieves ISO 27001 and ISO 27701 Certifications Simultaneously
2025-10-23
Recognized for Global Information Security and Privacy Management, Selected as an Exemplary Security Case
,%20%EC%97%90%EC%9D%B4%EC%95%84%EC%9D%B4%ED%8A%B8%EB%A6%AD%EC%8A%A4%20%EA%B9%80%EA%B4%91%EC%A4%80%20%EB%8C%80%ED%91%9C(%EC%9A%B0)_de18b.jpg "[%EC%82%AC%EC%A7%84]%20%EB%A1%9C%EC%9D%B4%EB%93%9C%EC%9D%B8%EC%A6%9D%EC%9B%90%20%EC%9D%B4%EC%9D%BC%ED%98%95%20%EB%8C%80%ED%91%9C(%EC%A2%8C),%20%EC%97%90%EC%9D%B4%EC%95%84%EC%9D%B4%ED%8A%B8%EB%A6%AD%EC%8A%A4%20%EA%B9%80%EA%B4%91%EC%A4%80%20%EB%8C%80%ED%91%9C(%EC%9A%B0)_de18b.jpg")
AITRICS (CEO Kwang Joon Kim), a company specializing in artificial intelligence(AI) technology announced on the 23rd that it has simultaneously obtained the ISO/IEC 27001 Information Security Management System (ISMS) certification and ISO/IEC 27701 Privacy Information Management System (PIMS) certification from LRQA (Lloyd’s Register Quality Assurance).
This achievement demonstrates that AITRICS has strengthened the security and reliability of its medical data management processes throughout the entire data lifecycle, in accordance with global standards.
ISO 27001 is the international standard for information security, covering policies, physical security, and technical safeguards. ISO 27701 evaluates the adequacy of an organization’s personal data management practices, including procedures for encryption and de-identification. Both certifications require compliance with the highest-level global information security and privacy management standards set by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).
Through these certifications, AITRICS has validated the safety and transparency of its information security and privacy management systems applied across its medical AI solutions. Amid rising data protection requirements from hospitals and healthcare institutions, this provides a foundation to deliver more trustworthy AI services to domestic and international partners and hospital clients.
The audit process involved thorough verification of 93 information security items and 49 privacy protection items, with particular recognition given to the CI/CD (Continuous Integration/Continuous Deployment) pipeline, which automates security from the early development stage, as an exemplary security practice.
Previously, AITRICS received ISO 13485 (Medical Device Quality Management System) certification in 2022. With these additional certifications, the company now holds three international certifications.
Jeong-ho Park, Chief Information Security Officer (CISO) of AITRICS, stated, “This certification not only officially recognizes that AITRICS’ information security meets international standards but also highlights our exemplary security operations in the medical AI industry. We will continue to enhance security measures and ensure compliance with global standards to lead the industry with safe and reliable medical AI solutions while fulfilling our social responsibilities.”