Compliance and Security

ISO Certifications

Logos of ISOQAR and UKAS Management Systems, indicating certification and registration.

Information Security Management

ISO 27001:2022  is an international standard on how to manage information security. We are a registered ISO 27001 company, confirming  we have a robust framework of policies and procedures covering all aspects of our business that meet the international standard ISO 27001:2022.

Certificate No 21908

Quality Management

ISO 9001:2015 is the international standard that specifies requirements for a quality management system.  The standard is used by organisations to demonstrate their ability to consistently provide products and services that meet customer and regulatory requirements and to demonstrate continuous improvement. We have been registered since 2004.

Certificate No 21908

Cyber Essentials Plus

Cyber Essentials Certified Plus logo featuring a blue and green design.

UK Government-backed security standard: independently verified certification proving robust defences against common cyber threats.

Crown Commercial Service Supplier

G-Cloud Framework where supplier cloud-based solutions are made available through a front-end Catalogue called the Digital Marketplace. GCloud framework is THE place to be, for companies who are thinking about selling their cloud-based solutions to the UK government. ILLY is an approved supplier on the G-Cloud framework.  We have met the high standards of security and compliance to be an approved supplier on this since G-Cloud 9

NHS Data Security Protection Toolkit

The Data Security and Protection (DSPToolkit is an online tool that enables relevant organisations to measure their performance against the data security and information governance requirements mandated by the Department of Health and Social Care, notably the 10 data security standards set by the National Data Guardian.  All organisations that have access to NHS patient data and systems must use this Toolkit to provide assurance that they are practising good data security, and that personal information is handled correctly. Such organisations are required to carry out self-assessments of their compliance against the assertions and evidence contained within the DSP Toolkit. We have been registered since 2014.

  • NDTMS CDS-R – Across all domains
  • CJIT