ISO 27001:2013

Zeliot Connected Services Pvt. Ltd. and the Condense platform have achieved certification for ISO/IEC 27001:2013, the international standard for Information Security Management Systems (ISMS). This certification demonstrates Zeliot’s ongoing commitment to safeguarding the confidentiality, integrity, and availability of information while continuously maintaining robust security governance across its products, services, and internal operations.

Overview of ISO/IEC 27001:2013

ISO/IEC 27001:2013 is a globally recognized standard established by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). The standard specifies requirements for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS).

The objective of ISO 27001 is to ensure that organisations adopt a systematic approach to managing sensitive data, applying appropriate technical, administrative, and physical controls to mitigate information security risks.

Scope of Certification

The ISO/IEC 27001:2013 certification awarded to Zeliot covers:

  • Design, Development, Services, Sales and After-sales services of connected mobility software solutions for asset management

  • The design, development, deployment, and operation of Condense, Zeliot’s fully managed real-time data streaming platform.

  • Associated services are delivered via Condense across its Bring-Your-Own-Cloud (BYOC), managed Kafka, and industry-verticalized deployments.

  • Supporting infrastructure, internal systems, operational processes, and personnel involved in delivering Condense services.

This certification applies to all information assets, data processing, and supporting environments where Zeliot operates services on behalf of its customers, whether deployed on Zeliot-managed infrastructure or customer-managed environments under BYOC models.

Key Security Domains Addressed

As part of the ISO/IEC 27001:2013 certification, Zeliot has implemented comprehensive security controls across multiple domains, including but not limited to:

  • Access Control: Identity and access management, role-based permissions, and least privilege principles.

  • Asset Management: Identification, classification, and protection of information assets.

  • Cryptography: Encryption of data in transit and at rest across all environments.

  • Operations Security: Secure configuration management, change management, vulnerability management, and system monitoring.

  • Supplier and Vendor Management: Security reviews and contractual controls with external service providers.

  • Incident Management: Defined processes for detection, response, analysis, and reporting of security incidents.

  • Business Continuity: Disaster recovery, backup, and resilience planning for service continuity.

  • Compliance & Legal Requirements: Adherence to applicable legal, regulatory, and contractual obligations related to data privacy, information security, and industry-specific regulations.

Relevance to Condense Customers

For customers leveraging Condense for real-time streaming, Kafka-native data pipelines, and mission-critical workloads, ISO 27001:2013 certification provides independent assurance that:

  • Data Security is embedded in both the design and daily operations of the platform.

  • Operational Controls are systematically maintained to safeguard customer workloads across multi-cloud, hybrid, or BYOC deployments.

  • Risk Management Processes are proactively applied to continuously monitor and mitigate emerging security threats.

  • Auditability and Transparency are maintained through internal controls and regular independent assessments.

This certification strengthens Condense position as a production-grade, enterprise-ready platform suitable for highly regulated industries such as automotive, mobility, logistics, financial services, healthcare, and industrial IoT.

Certification Details

  • Standard: ISO/IEC 27001:2013, Information Security Management System (ISMS)

  • Certification Body: nqa

  • Certification Scope: Design, Development, Services, Sales and After-sales services of connected mobility software solutions for asset management

  • Issued To: Zeliot Connected Services Pvt. Ltd.

  • Valid As Of: 08 July 2025

  • Certificate Number: 600319

  • Status: Active

Continuous Compliance and Recertification

ISO 27001 is not a one-time certification. Zeliot maintains an active ISMS program, subject to:

  • Annual surveillance audits

  • Periodic recertification assessments

  • Continuous improvement processes to align with evolving security best practices, threat landscapes, and regulatory requirements.

This ensures that information security remains a dynamic and continuously evolving priority across all Zeliot operations.

Other Certifications

In addition to ISO 27001:2013, Zeliot has also achieved ISO 9001:2015 certification for Quality Management Systems, reinforcing its commitment to quality, security, and operational excellence across its products and services.

Refer to: ISO 9001:2015 Certification Page

Additional References

Last updated

Was this helpful?