KATHMANDU — Ncell has successfully renewed its ISO 27001:2022 (Information Security Management System – ISMS) and ISO 27701:2019 (Privacy Information Management System – PIMS) certifications, reinforcing its leadership in information security and data privacy in Nepal.
Last year, Ncell became the country’s first telecom operator to achieve both ISMS and PIMS certifications. The renewal further underscores the company’s ongoing commitment to safeguarding customer information and maintaining global best practices in data protection.
As part of the renewal process, an auditor appointed by an ISO-accredited body conducted a surveillance audit at Ncell. The audit confirmed that Ncell’s governance processes for information security and data privacy fully comply with international ISO standards. The renewed certifications are valid for the next year.
The scope of the certifications includes customer data centres, customer service operations, and IT services, demonstrating that Ncell meets the highest benchmarks in privacy management and information security across its core functions.
These international certifications provide customers with greater assurance that their personal and sensitive information is managed securely and responsibly. They also affirm that customer data is handled with the utmost care in line with globally recognised frameworks.
ISO 27001 certifies that Ncell has implemented robust controls to protect customer and partner data from cyber threats and unauthorised access. ISO 27701 extends this framework to privacy management, ensuring alignment with international standards for personal data protection and reducing the risk of data breaches.
By adhering to these ISO standards, Ncell operates within a secure and transparent framework for managing customer information. The certifications reflect the company’s accountability and reinforce that customer trust remains central to its operations.
Ncell’s systems are designed to minimise disruptions, mitigate operational risks, and support business continuity while prioritising data security and confidentiality across all processes.
