Google Apps for Business has earned ISO 27001 certification.
"This new certification, along with existing SSAE 16 / ISAE 3402 audits and FISMA certification for Google Apps for Government, help assure our customers that Google is committed to ongoing development and maintenance of a robust Information Security Management System (ISMS) that an independent, third-party auditor will regularly audit and certify," posted Eran Feigenbaum, Director of Security, Google Enterprise.
"ISO 27001 is one of the most widely recognized, internationally accepted independent security standards and we have earned it for the systems, technology, processes and data centers serving Google Apps for Business."
"ISO/IEC 27001 formally specifies a management system that is intended to bring information security under explicit management control. Being a formal specification means that it mandates specific requirements. Organizations that claim to have adopted ISO/IEC 27001 can therefore be formally audited and certified compliant with the standard (more below)."
"Our compliance with the ISO standard was certified by Ernst & Young CertifyPoint, an ISO certification body accredited by the Dutch Accreditation Council, a member of the International Accreditation Forum (IAF).
Certificates issued by Ernst & Young CertifyPoint are recognized as valid certificates in all countries with an IAF member," Feigenbaum stated.
For more information on the security audits and certifications for Google Apps, review this certification 1-pager.