Socure Digital Identity Verification Platform Achieves Three New ISO Certifications for Privacy and Security Controls

Company Demonstrates Commitment to Protect and Ensure Confidentiality of Customer Data; Adherence to GDPR Privacy Provisions

NEW YORK--()--Socure, a leading provider of predictive analytics for digital identity verification, today announced it has achieved compliance certification for three ISO/IEC 27000 standards pertaining to the privacy, confidentiality, and security controls of its ID+ system and service. These internationally recognized standards help organizations keep information assets — including personally identifiable information (PII) about consumers — secure, private, and confidential within a cloud-based environment.

The certification was issued by A-lign, an independent and accredited certification body, following the successful completion of a formal audit that verified Socure’s process and controls meet the requirements of ISO 27001, 27017 and 27018. Socure also completed its annual re-attestation of its SOC 2 type 2 report with an expanded scope that now includes privacy and security controls. A-lign tested the operational effectiveness of controls, and certified that Socure satisfies rigorous international standards in ensuring the confidentiality, integrity, and availability of customer data.

“Data privacy, security, and integrity are essential for our customers, but also for consumers,” said Tom Thimot, CEO of Socure. “In an industry that relies on trust, the latest ISO certifications and SOC 2 type 2 report provides our prospects, customers, and their customers the confidence of knowing that Socure adheres to international Trust Services Principles standards for security and confidentiality.”

The ISO certifications also overlap the tenets laid out in the forthcoming General Data Protection Regulation (GDPR) requirements for EU citizens. Recent updates to the Socure Privacy Policy include these considerations for GDPR, as well as several other modifications. This commitment demonstrates Socure’s respect for privacy with domestic, as well as international customers, and the information about consumers that Socure processes.

The policy can be seen at:

Socure has developed a patented, predictive analytics platform called ID+ that verifies whether digital identities are authentic, synthetic, or stolen. The company’s deep learning technology establishes an unprecedented level of trust and certainty for financial transactions. The ID+ platform applies advanced data science techniques to hundreds of sources of consented online, social, mobile, and offline data to validate the authenticity of digital identities in real-time.

Use Cases:
Digital ID Verification:
Socure Privacy Policy:

About Socure
Socure is the leader in high-assurance digital identity verification. The company’s predictive analytics platform applies artificial intelligence and machine learning to trusted online/offline sources including email, phone, address, IP address, social media and traditional GLBA/DPPA data to authenticate identities in real-time. The Socure ID+ platform reduces fraud by up to 90 percent, lowers manual review/knowledge-based authentication (KBA) rates by as much as 80 percent, and automates Customer Identification Program (CIP), Know Your Customer (KYC) and anti-money laundering (AML) compliance initiatives. For more information visit


Marc Gendron PR for Socure
Marc Gendron, 781-237-0341

Release Summary

Socure achieved three ISO/IEC standards certifications for the privacy, confidentiality, and security controls of its ID verification service.


Marc Gendron PR for Socure
Marc Gendron, 781-237-0341