Skip to main content
Arrow Electronics, Inc.

ISO certified

As an ISO 27001 certified platform, ArrowSphere meets rigorous data security standards, bringing you and your customers peace of mind.

Arrow proudly holds the industry recognised International Organisation for Standardisation (ISO) 27001 certification.

Young woman riding a bicycle in the city at sunrise
Confidentiality, integrity and availability

About the certification

As an ISO 27001 certified platform, ArrowSphere has well-documented and proven standards for data confidentiality, integrity and availability. The platform is regularly audited to validate that the supporting infrastructure maintains the requirements of the ISO standard. Arrow adheres to more than 100 controls — including physical security, account management, platform security, data security and privacy, and email security. 

ISO is an industry marker that demonstrates the high value we place on security and our deep commitment to adhering to compliance and security practices.

Committed to excellence in cyber security



Data remains private and confidential



Data quality is maintained through threat detection and monitoring



Access your data with no disruption


Safeguarding your data

ArrowSphere has an array of controls in place to ensure your data is completely secure and treated with the utmost care. These controls help us maintain data privacy and confidentiality and that we remain compliant with regulations such as GDPR.

We ensure authorised users have appropriate access and privileges through various controls, including multifactor authentication, single sign on, password complexity and role-based access controls (RBAC). This ensures intended users have the appropriate access — nothing more and nothing less.


Preserving quality and authenticity

Data is only valuable when it is representing true and accurate information. ArrowSphere has established controls to maintain the integrity of the data, prevent misuse and eliminate manipulation by unauthorised parties.

Activities being performed on both the front and back-end of the ArrowSphere platform and web application are monitored 24/7. We’re able to guarantee information does not get transmitted out of country, and data is encrypted at transit and at rest. If you no longer want your data in the platform, we can anonymise the information.

We can detect malicious attempts and protect data from vulnerabilities by bots, foreign actors and other cybercriminals. 

Woman using laptop in office

Minimising disruption and downtime

Available when and where you need. ArrowSphere’s resilient infrastructure enables authorised users to access the platform anytime.

To counter any incidents or potential disasters, ArrowSphere is virtualized and the main instance has been replicated and can move automatically. We have geo-redundancy in place to ensure that we don’t experience system downtime in the face of unexpected issues.

Want to learn more about ArrowSphere’s security?
Contact Us