"KTC" is the first and only financial institute in Thailand to receive the ISMS - Information Security Management System (ISO/IEC 27001: 2013) Certification for its overall organization. The firm has adapted the standard in its entirety and implemented it earnestly in all departments and work operations, whether it be in its core or support work systems, including management of external service providers of credit card business, personal loans business, merchant acquiring business, IT Infrastructure or Data Center. All of these elements contribute to KTC's well internal control system for its information system and company information, which adopts confidentiality, integrity and availability qualities for both company and other personal information.
"ISO27001 Standard" was established by the ISO - International Organization for Standardization. The most recent version, ISO/IEC 27001: 2013, was implemented on October 1, 2013, as a global standard for Information Security Management Systems (ISMS) for organizations to utilize its regulations for risk assessment, security system design, and information security management for both digital and hard-copy data safely and securely. This standard is the only criterion for information security management systems that is assessable, and certifies that the approved organization has been operating in compliance with laws, rules, regulations and contractual requirements pertaining to important information. Thus, the acquirement of the ISO 27001 certification attest to how the organization has operated according to necessary procedures to protect crucial information from unauthorized access.