Over the last years, we have worked to engage all of the organisations who will play a part in making sure Yoti is accepted in as many places as possible.
Yoti is a member of the following organisations:
- Association of Convenience Stores;
- British Retail Consortium (Associate);
- Cifas (Cross Industry Fraud Prevention Service);
- Confederation of British Industry;
- Data Protection Forum;
- Digital Policy Alliance;
- German Association for Voluntary Self-Regulation of Digital Media service providers
- Global Cyber Alliance;
- London Digital Security Centre;
- Open Identity Exchange;
- Social Enterprise UK;
- Signatory to 5 Rights (iRights) charter;
- UK Council for Child Internet Safety (Associate); and
We have presented Yoti to the following organisations:
- Chartered Trading Standards Institute;
- City of London Police;
- Competition and Markets Authority;
- Department for Culture, Media & Sport;
- Department for Work & Pensions;
- Disclosure and Barring Service;
- eIDAS DG CNECT, Brussels;
- Financial Conduct Authority;
- Gambling Commission;
- Games Rating Authority;
- Home Office;
- HM Passport Office;
- HM Revenue & Customs;
- HM Treasury;
- Joint Money Laundering Steering Group;
- Law Society & Solicitors Regulation Authority;
- The Metropolitan Police;
- National Fraud Intelligence Bureau;
- National Police Chiefs Licensing Group;
- New Scotland Yard;
- Operation Amberhill (Met Police);
- Operation Falcon;
- Operation Sterling; and
- Video Standards Council.
Yoti’s provision of ID Verification Services is certified as compliant with the ISO/IEC 27001:2013 international standard for Information Security. The certificate is valid until 29 April 2021. Yoti undergoes annual audits by an external auditor as a condition of its ISO 27001 certifications, with the next audit due in May 2020. In Yoti’s latest audit in March 2020 it was assessed with zero non-conformities.
We engage one of the top four global auditing firms to assess the continuous operation of our security controls, using the highly regarded ISAE 3000 (‘SOC2’) methodology. Our most recent assessment period was April to September 2019. We were delighted to receive a report that found no exceptions in the operation of our security controls. The same auditor validated Yoti's provision of age-check services as being in accordance with the British Standards Institution’s PAS 1296:2018 code of practice.
In July 2019, Yoti was the only company to be certified under the ‘AV’ scheme by UK Government’s Age-Verification Regulator. This scheme was to ensure age-verification providers maintained high standards of privacy and data security.
In October 2019 Yoti was certified under the ‘Age Check Certification Scheme’, allowing us to provide Electronic Identification Verification Technology (e-IDVT) to issuers of ‘PASS’ (Proof of Age Standards Scheme) cards in the UK.
In the USA, Yoti has been assessed as compliant with the HIPAA ‘Privacy Rule’ and ‘Security Rule’ for storing health data. Put more formally, where Yoti acts as a business associate to ‘covered entities’ storing and processing electronic protected health information of individuals (‘ePHI’), our platform meets the requirements of the US Federal Health Insurance Portability and Accountability Act of 1996 (‘HIPAA’). Our first HIPAA assessment was in May 2020. We will repeat our assessment annually.
Yoti is B Corps certified. Certified B Corporations are businesses that meet the highest standards of verified social and environmental performance, public transparency, and legal accountability to balance profit and purpose. B Corps are accelerating a global culture shift to redefine success in business and build a more inclusive and sustainable economy. Society’s most challenging problems cannot be solved by government and nonprofits alone. The B Corps community works toward reduced inequality, lower levels of poverty, a healthier environment, stronger communities, and the creation of more high quality jobs with dignity and purpose. By harnessing the power of business, B Corps use profits and growth as a means to a greater end: positive impact for their employees, communities, and the environment. B Corps form a community of leaders and drive a global movement of people using business as a force for good.
Secured by Design is the UK Police flagship initiative combining the principles of ‘designing out crime’ with physical security and processes. Yoti is one of Secured by Design’s newest member companies, having had its digital identity app accredited by Secured by Design earlier in 2018 (for all areas except Alcohol Licensing). As a result, Secured by Design has recognised the high standards of security that the Yoti app provides when an individual uses it to prove their identity online and in person.