Conga® Achieves ISO 27001 and 27701 Certifications

Share Article

Independent party evaluates -- and verifies -- Conga’s security and privacy controls posture

Conga®, the leader in end-to-end Digital Document Transformation (DDX), today announced that it has completed its annual audit examinations and obtained certification to new standards. Conga’s annual compliance program now includes assessment reports and certifications covering HIPAA, ISO 27001, ISO 27701, SOC 1 Type 2, and SOC 2 Type 2. These assurance activities, performed by Coalfire Controls, LLC, reinforce Conga’s unwavering commitment to building and maintaining partnerships with its customers built on transparency and assurance.

Conga is committed to prioritizing and understanding the serious challenges that organizations face when it comes to security, privacy and compliance. The company has designed an approach to compliance that includes regulations and industry-recognized certifications, including the latest ISO 27701 standards, as well as offering a trust and assurance portal that is unmatched by its peers. This helps increase Conga’s customers confidence that their data is safe and secure while supporting their compliance throughout the entire document process.

“In an evolving risk landscape comprised of diverse threat factors, service organizations are being challenged with the continuous improvement of their baseline security posture. Conga has adopted the perspective of ‘first mover’ backed by their achievements towards multiple information security, privacy, and governance reports and certifications,” said David Forman, managing principal, ISO Assurance at Coalfire. “This combination of third-party assurance has largely been avoided by industry peers due to the upfront commitment, required in-house expertise and costs. Conga routinely demonstrates a culture of security and privacy within all areas of its operations that is artificially creating a new benchmark for the sector in response to increased regulation.”

Added Mary Sparks, vice president of privacy and compliance at Conga, “We understand the critical importance of the data our more than 11,000 customers -- often across highly-regulated industries -- entrust to us. As a trusted partner, it is our duty to build the latest requirements and regulations into every single thing we do. The achievement of these certifications and audit reports provides independent verification that our privacy, security, availability and confidentiality controls are tested and operated in strict adherence to the highest possible standards.”

For more information on Conga’s security practices, visit

About Conga
Conga continually sets the standard for Digital Document Transformation (DDX). The Conga DDX Suite helps 11,000+ organizations in 85 countries including AWS, GE, Hilton Worldwide and Salesforce transform day-to-day business by creating, managing and unleashing the power of the everyday documents. The company is privately-held and based in Broomfield, Colo. with global operations across North America, Europe and Australia. Learn more at or follow Conga on Twitter: @getconga.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Shelby Armstrong
Visit website