Is Goalite ISO 27001 certified?

Not yet. Goalite’s ISO 27001 compliance programme is underway, targeting certification in 2026. Current security documentation is available for enterprise procurement under NDA.

Can Goalite still pass our enterprise security review?

Yes. Many enterprise organisations complete security reviews with vendors who are actively pursuing ISO 27001. We provide full security documentation, complete procurement questionnaires, and are transparent about our current programme status and timeline.

What security documentation is available now?

Security controls summary, sub-processor list, DPA, architecture overview, incident response and business continuity summaries. All available on request under NDA.

ISO 27001

ISO 27001 compliance roadmap.

Goalite’s ISO 27001 information security management programme is underway. We are transparent about where we are in this process — because honesty matters more to enterprise procurement than premature certification claims.

Current status

Our current status.

Goalite is actively building its ISO 27001-aligned information security management system (ISMS). We are targeting certification in 2026. The programme includes:

Information security policy documentation

Risk assessment and treatment programme

Security controls framework (aligned to Annex A)

Incident response procedures

Business continuity planning

Internal audit programme

Management review process

Supplier and sub-processor assessment

Annual penetration testing (planned)

Cyber Essentials certification (planned alongside ISO 27001)

Available now

What enterprise procurement teams can access now.

Security controls summary document (available under NDA)

Sub-processor list

Data processing agreement (DPA)

Architecture overview document

Incident response procedure summary

Business continuity procedure summary

Request any of the above: hi@goalite.com with [SECURITY] in the subject line.

Why it matters

Why ISO 27001 matters.

ISO 27001 is the international standard for information security management systems. It provides a systematic framework for managing sensitive company and customer information, ensuring confidentiality, integrity, and availability. For enterprise customers, ISO 27001 certification from a vendor signals that security controls are independently verified, not self-assessed.

Many enterprise procurement processes require ISO 27001 certification or evidence of active progress towards it. The standard covers risk management, access control, incident handling, business continuity, supplier management, and ongoing monitoring. Goalite’s ISMS programme is designed to meet these requirements comprehensively, not as a checkbox exercise.

Roadmap

Our timeline.

Q2 2026

ISMS framework established, policies documented

In progress

Q3 2026

Internal audit complete, Azure Marketplace listing

Q4 2026

External audit initiated

2027

Certification target

FAQ

Frequently asked questions

Security documentation — available on request.

Book a demo Security overview GDPR compliance Microsoft partnership For Enterprise