In order to ensure the information security of the Force is up to the highest international standard, the Force employs an independent party to audit its Information Security Management System (ISMS) every two years to benchmark with ISO/IEC 27001.

Since 2011, the Information Systems Wing (ISW) has successfully implemented the ISMS under ISO/IEC 27001. The certification proves the effective implementation of the ISMS in the Force and reassures public confidence in the Force’s governance on information security.

In early 2020, the ISW successfully passed the re-certification audit by an accredited certification body that assessed its provision of information security management framework for the Force, including establishment and implementation of security policies and governance services. The re-certification affirms the effectiveness of our ISMS and demonstrates the Force’s continuous efforts on information systems governance and data protection.