Nigeria: Stransact, Doftwerks Achieve ISO 27001 Certification for Data Security

Stransact and its technology subsidiary Doftwerks have obtained ISO/IEC 27001:2022 certification, reinforcing their commitment to global standards in information security and data protection.

The certification, widely recognised as a benchmark for Information Security Management Systems (ISMS), confirms that both organisations have implemented robust frameworks to safeguard data confidentiality, integrity, and availability across their operations.

According to the firms, the milestone strengthens their capability to deliver secure, enterprise-grade compliance solutions, particularly in support of Nigeria’s evolving e-invoicing requirements under the Nigeria Revenue Service framework.

ISO/IEC 27001:2022 requires organisations to establish comprehensive controls spanning people, processes, and technology to identify, manage, and mitigate information security risks. The certification signals that Stransact and Doftwerks have aligned their operations with these international best practices.

Speaking on the development, Managing Partner at Stransact, Eben Joels, described the certification as a core operational standard rather than a symbolic achievement.

“For our clients—especially finance, technology, and compliance leaders—this provides assurance that sensitive financial and transactional data is protected in line with global standards,” he said, noting that it also supports secure implementation of Nigeria’s e-invoicing regime.

As businesses prepare for mandatory electronic invoicing, concerns around data security, system resilience, and regulatory compliance are becoming increasingly critical. Through its subsidiary, Stransact integrates secure technology solutions into enterprise finance systems, helping organisations meet both regulatory and operational requirements.

Chief Technology Officer at Doftwerks, Tunde Awopegba, emphasised the importance of security in building trust within digital financial ecosystems.

“This certification validates the strength of our platforms and internal controls, giving clients confidence that their data is handled with the highest level of security,” he said.

The certification is expected to deliver several benefits to clients, including enhanced regulatory confidence, reduced exposure to information security risks, improved governance aligned with international standards, and stronger assurance for boards, investors, and regulators.

By embedding information security into both service delivery and technology infrastructure, Stransact and Doftwerks are positioning themselves at the intersection of regulation, technology, and risk management, as demand for secure compliance solutions continues to grow.