KTC has reinforced its commitment to data security and privacy governance by achieving two globally recognized certifications: ISO/IEC 27001:2022 for Information Security Management and ISO/IEC 27701:2019 for Privacy Information Management. These certifications were granted by the British Standards Institution (BSI), a world-renowned authority in standards and compliance. The certificates were presented to Mrs. Pittaya Vorapanyasakul, President & Chief Executive Officer "KTC" or Krungthai Card Public Company Limited, by Ms. Piyaorn Ratsameerungruangtawee, Sales and Marketing Director of BSI Group (Thailand) Co., Ltd. at KTC TOUCH, UBCII building.
Mrs. Pittaya, emphasized the company's unwavering commitment to safeguarding the data of its members, partners, and stakeholders. "At KTC, data security is a top priority. Beyond investing in advanced technology, we embed security thinking and processes into our organizational culture to ensure all types of data are rigorously and continuously protected."
"KTC is the first financial institution to receive full organizational certification, covering all operations from upstream to downstream, including credit card services, personal loans, and payment solutionsnot just the data center."
This year, KTC successfully completed the re-certification process for both standards, including the transition to the updated ISO/IEC 27001:2022 version. This standard provides a comprehensive framework for managing information security risks across processes, personnel, and technology. Meanwhile, ISO/IEC 27701:2019 extends the framework to include privacy protection, ensuring compliance with both domestic and international data protection regulations. KTC has consistently upheld its ISO certification for the past six years.