Stransact and its technology subsidiary, Doftwerks, have achieved ISO/IEC 27001:2022 certification, reinforcing their position in delivering secure compliance solutions for Nigeria’s electronic invoicing regime.

The certification, regarded as a global benchmark for Information Security Management Systems (ISMS), affirms that both firms meet international standards on data protection, confidentiality, integrity and availability.

It also signals their readiness to support the Nigeria Revenue Service’s (NRS) e-invoicing mandate with secure, enterprise-grade systems.

According to the firms, ISO/IEC 27001:2022 requires organisations to implement strict controls across people, processes and technology with independent audits to ensure effective risk management.

The certification confirms that Stransact and Doftwerks have established a framework to identify, manage and reduce information security risks across their operations.

Managing Partner at Stransact, Eben Joels, said the certification goes beyond a symbolic achievement, describing it as central to how the firm operates.

He said, “ISO/IEC 27001:2022 certification is not a badge; it is an operating discipline. For our clients, particularly CFOs, CIOs and compliance leaders, this provides board-level assurance that sensitive financial and transactional data is protected in line with the most demanding global standards.”

He added that the milestone strengthens the firm’s commitment to supporting the e-invoicing system with solutions that are secure from the design stage.

As Nigeria expands the implementation of mandatory electronic invoicing, the firms noted that data security and system resilience are becoming more critical for businesses, especially those operating at scale.

Through Doftwerks, Stransact provides technology-driven compliance solutions designed to integrate with enterprise finance systems while meeting regulatory and security requirements.

Chief Technology Officer at Doftwerks, Tunde Awopegba, said trust in digital tax systems depends largely on strong security frameworks.

“Security is fundamental to trust in any digital tax infrastructure. This certification validates the robustness of our platforms and internal controls and gives clients confidence that their data is handled with the same level of care expected in leading global markets,” he said.

The firms stated that the certification offers key benefits to clients, including improved regulatory confidence in meeting e-invoicing and data protection requirements, reduced exposure to information security risks, and stronger governance aligned with international standards.