On July 12, XingJi Meizu Group successfully passed the rigorous review by the British Standards Institution (BSI), a leading international standards, testing, and certification body. The group was awarded the ISO/IEC 27001 certification for its information security management system and the ISO/IEC 27701 certification for its privacy information management system. This achievement signifies that XingJi Meizu Group has reached an internationally advanced level in information security management and personal privacy protection.
Information security and personal privacy protection are crucial for the consumer electronics and automotive industries. Irregular practices by some smartphones and mobile applications, such as unlawful collection of personal information, unreasonable requests for user permissions, and data leaks, have raised concerns among users regarding the safety of their personal information. Smart connected vehicles represent the intelligent development of the automotive industry, but they also harbor risks such as software and hardware vulnerabilities, hacker attacks, and privacy breaches for occupants. This poses higher demands for information security protection for companies engaged in the consumer electronics and intelligent mobility sectors.
ISO/IEC 27001 is the international standard for information security management, providing comprehensive standards and detailed requirements for establishing, implementing, maintaining, and continuously improving an information security management system. ISO/IEC 27701 adds privacy protection extension requirements to ISO/IEC 27001, effectively integrating principles, concepts, and methods of privacy protection into the information security framework, helping companies better safeguard personal privacy.
XingJi Meizu Group is focused on the integration of "smart electric vehicles + smartphones + XR + forward-looking technologies" in its industrial layout, aiming for a deep fusion and super synergy between the consumer electronics and automotive sectors. Consequently, it places great emphasis on information security management and personal privacy protection. During the certification preparation process, XingJi Meizu Group established a special project team to rigorously implement over 190 information security and personal privacy protection requirements from the ISO/IEC 27001 and ISO/IEC 27701 frameworks. Through system development, risk assessments, internal audits, and management reviews, the group continuously enhanced its management capabilities and ultimately passed BSI's stringent evaluation.
Zhang Yadong, Executive Vice President and CTO of XingJi Meizu Group, stated that the company fully understands that information security and personal privacy protection are core elements of product trust. By adhering to the advanced concept of Privacy by Design, XingJi Meizu Group integrates information security and personal privacy protection throughout the entire lifecycle of product design and development. Since its establishment, the group has set up an information security management system and a privacy information management system, forming a security governance committee. Through a comprehensive governance approach that combines systems, processes, technology, and organizational culture, the group ensures the safety and privacy of its products.
Zhang Yixiang, Managing Director of BSI Group Greater China, stated that XingJi Meizu Group places a strong emphasis on protecting user privacy from the very beginning of product design. We highly endorse this commitment to information security and privacy protection. Congratulations to XingJi Meizu Group on achieving ISO/IEC 27001 and ISO/IEC 27701 certifications. We hope that the group continues to enhance its information security capabilities and provide privacy protection for more users.
The certification audit marks a new starting point for XingJi Meizu Group's efforts in information security and personal information protection. In the context of the deep integration of the consumer electronics and automotive industries, the group will continue to advance the construction and maintenance of its information security and personal information management systems. It will adhere to continuous improvement and always comply with ISO/IEC 27001 and ISO/IEC 27701 standards to provide users with a higher level of security and privacy protection.