By achieving ISO/IEC 27001:2013 certification, which requires at least two third-party audits each year, and utilizing an information security management system (ISMS) that is designed to improve the confidentiality, integrity, and availability of critical security assets, VMC minimizes the risks for our partners. Specific security measures include:

Physical Security

Physical Protection
Digital video surveillance including access cards and monitors

Secure Perimeter
Physical perimeters to protect important information and processing

Physical Entry Controls
Only authorized personnel are allowed access to secure areas

Secure Areas
Designated areas that are isolated for media creation and duplication

Equipment Protection
Equipment separation and additional access control for confidential data

Logical Security

Network Segregation
Firewalls separate environments and data packets are logically separated

Digital Data Protection
Industry-leading software providers for data destruction

Network and Database Access
Permission-based access to applications, databases, and tools

Information Exchange
Formal policies, procedures, and controls for communication equipment

Email Access
Controls and encryption protect systems from unauthorized access and modification

Socially Engineered Security

VMC personnel are trained to handle security risks and customer-specific requirements

Security training and a work environment that emphasizes our confidentiality obligations

By adhering to a stringent set of business process standards, and achieving industry certifications as well as official partner designations across a wide variety of related functions, VMC has ensured that operational best practices are in place to better serve its customers worldwide.


ISO/IEC 27001:23