Missing ISO27001 certification of Asana?


we have recently passed our ISO27001 certification. During the process, we found that Asana is the only of all our cloud-based SaaS suppliers not being ISO27001 certified.

We have created a time-limited exception to be able to continue to use Asana for the moment. However, we do expect our cloud SaaS providers to take information security seriously.

What is the strategy of Asana in this regard?
Are there specific plans for you to get ISO27001 certified?
Do you have any independent assessment of your information security standards?

Best regards,

HI @Johannes_Resch and thanks for reaching out!

You can learn more about our security and privacy processes here: Trust at Asana • Asana. Regarding the ISO27001 certification specifically, I would recommend reaching out to our support team, our security experts will be able to better advise you!

Hi @Johannes_Resch,

Have you already reached out? and did you get some answers? Please share if you do :smiley:

1 Like

I’m very interested in this as well @Johannes_Resch if you are able to share.

Hi guys,

yes, I raised a ticket. Seems Asana still does not have plans to go for ISO27001 as of Dec 2020.

Best regards,


Hi all, this is something we’re currently working on! We should have some update to share within the next 2-3 months, so stay tuned!

Hi everyone! Asana now complies with ISO/IEC 27001:2013. Learn more and view our certificate on asana.com/trust