tNotice management system certifications

A qualified trust service cannot rely on regulatory compliance alone: it must demonstrate that the internal processes protecting data, evidence and operations are structured, audited and maintained over time. Management system certifications are the concrete proof of that commitment.

inPoste.it S.p.A. has implemented an Integrated Management System (IMS) certified by accredited certification bodies.

Current certifications

Information security

UNI EN ISO 27001:2022 The baseline information security certification. It confirms that inPoste.it S.p.A. has identified and assessed information risks, applied proportionate controls and is subject to periodic audits by an accredited body.

UNI EN ISO 27001:2022 extended with ISO 27017:2021 and ISO 27018:2025 A specific extension for public cloud services. ISO 27017 covers security controls for cloud services; ISO 27018 covers the protection of personal data in the cloud. For a service that processes certified electronic communications, this extension explicitly addresses the cloud perimeter.

Quality

UNI EN ISO 9001:2015 Quality management system. It confirms that operational processes are documented, monitored and improved in a systematic way.

Energy

UNI EN ISO 50001:2018 Energy management system. It reflects a structured commitment to energy efficiency and operational sustainability.

Gender equality

UNI PdR 125:2022 Gender equality certification. It confirms the adoption of policies and practices that promote equity within the organisation.

Why this matters for service users

For legal, compliance and operations teams evaluating tNotice as a vendor, management system certification is not background information: it is independently verifiable evidence that the processes protecting customer communications and evidence records are controlled by accredited third parties.

Within the qualified trust-services perimeter, security measures are independently verified at least once a year by a recognised body — in addition to ISO certification cycles, which have their own renewal schedules. Certifications are only renewable when controls are demonstrably in place at the time of audit.

Current certificates

• ISO 27001:2022 — Information security (opens in new tab)
• ISO 27017:2021 · 27018:2025 — Cloud security (opens in new tab)
• ISO 9001:2015 — Quality (opens in new tab)
• ISO 50001:2018 — Energy (opens in new tab)
• UNI PdR 125:2022 — Gender equality (opens in new tab)