SOURCE: Varolii


November 15, 2011 09:00 ET

Varolii Achieves Highest Information Security Standard With ISO 27001 Certification

Varolii Becomes First and Only U.S. Customer Interaction Management SaaS Provider to Comply With Four Top Security Standards

SEATTLE, WA--(Marketwire - Nov 15, 2011) - Varolii Corporation, the independent market and technology leader in interactive, personalized SMS, voice and email customer communications, today announced it has achieved ISO 27001 certification, the internationally recognized Information Security Management System (ISMS) standard. With this certification, Varolii becomes the first and only U.S. company in the proactive customer interactions industry to meet ISO 27001 certification, Payment Card Industry Data Security Specification (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA) and Gramm-Leach-Bliley Act (GLBA) compliance. These comprehensive standards endorse Varolii's superior data management security procedures, and ensure Varolii meets the unique security requirements around handling sensitive data particularly for healthcare and financial services organizations.

ISO 27001 (ISO/IEC 27001) is the most rigorous global security standard that sets out requirements for an Information Security Management System. To achieve the certification, a company must show it has a systematic and ongoing approach to managing sensitive company and customer information. The certification was performed by BrightLine, an ANAB-accredited certification body based in the United States.

"Businesses rely on us to go above and beyond with the safety of their data, and this certification is just the next step in Varolii's continued commitment to providing the highest level of data and services security available today," said Will Longman, Chief Security Officer at Varolii. "As a trusted cloud-based solutions provider, it is crucial that we adhere to a gold standard when it comes to securing both client and consumer information. Businesses can count on Varolii -- the only company in our space to hold all of these certifications -- to deliver award-winning customer and employee interactions that increase consumer satisfaction and decrease costs while safeguarding sensitive company and personal information. This certification also strengthens the control structure we use to comply with the European Union Data Protection Directive, benefiting our U.S. corporate customers who communicate in Europe."

The certification process included a comprehensive on-site assessment of Varolii's information security management system. This management system supports the governance, risk management and compliance processes that ensure the proper selection and continuing effectiveness of security controls to protect customer data. Over 130 technical and administrative security controls implemented by Varolii were also audited for compliance to the standard.

With these compliance standards, Varolii ensures client data protection while securely delivering more than five billion intelligent, personalized communications to consumers and employees on behalf of Fortune 1000 companies. An ISO 27001-based security strategy offers broader protection and lower risk than one built to satisfy individual compliance and regulatory requirements. Varolii also regularly submits to client audits, most recently for six of the top 10 U.S. financial services companies and the U.S. government. In addition to annual audits, Varolii performs monthly security reviews for its financial services clients.

To keep personal consumer information safe, Varolii has also developed a five-layer security strategy that incorporates the various touch points sensitive data may pass through while going from consumer to company, and then back again. The individual layers include privacy protection, network security, facility security, corporate data security and personal data security.

For more information, the details of Varolii's ISO 27001 certification are publicly available at

About BrightLine
BrightLine CPAs and Associates, Inc. ("BrightLine") is a global provider of assurance and compliance services. As the only company in the world fully accredited to provide a suite of services that includes SAS 70 audits, SSAE 16 examinations, PCI DSS compliance validations and ISO 27001 certifications, BrightLine offers clients a unique opportunity to achieve multiple compliance objectives through a single third party assessor. For more information, please visit

About Varolii Corporation
Varolii is the leading independent market and technology leader in intelligent, personalized interactive communications. Its cloud-based communication solutions help organizations easily and effectively reach and interact with large numbers of consumers and employees, reducing operational costs, improving business continuity and enhancing customer service. Varolii blends voice, SMS, mobile and email channels to drive profitable action. At the heart of the platform is its personalization capabilities, Varolii ID™, which automatically analyzes each recipient's past responses to personalize future communications and achieve higher outcome rates at a lower cost. With the Varolii Interact platform, organizations can execute true 1-to-1 communication on a large scale, achieving better results from fewer interactions. More than 400 companies trust Varolii to send nearly three million communications every business day. For more information, visit

Contact Information

  • For more information:
    Jessica Kendall
    Edelman PR
    206-268-2231 (office)
    210-859-6971 (mobile)
    Email Contact