Back to news & press releases

Merrill Corporation Receives ISO 27001 Certification for eDiscovery Services

Jan 20, 2015

Certification Recognizes Compliance with International Security Standards

St. Paul, Minn. — Merrill Corporation, (, a leading provider of technology-enabled services for the financial, real estate, legal and other corporate markets, has been granted ISO/IEC 27001:2013 certification for its information security management system (ISMS) supporting the company’s eDiscovery services.

The ISO/IEC 27001:2013 certification, which was developed by the International Organization for Standardization (ISO), establishes international requirements for information security management systems (ISMS). According to the ISO, “the standard specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented data security management system within an organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization.”

Merrill's recent certification provides official recognition of the company’s commitment to an information security management system (people, processes and IT systems) that complies with an established set of international standards. As a global company and an acknowledged leader in eDiscovery services, Merrill Corporation is dedicated to applying best practices and technologies throughout the entire eDiscovery process to safeguard the integrity, availability and confidentiality of data under its control.

Merrill's complete eDiscovery services include: information governance and litigation preparedness consulting, forensic data acquisition and processing, Early Language Assessment™, Relativity® hosting, advanced analytics, and managed document review. The company’s secured system comprised of this unique blend of legal consulting, service and technology helps organizations analyze the enormous amount of information typical in today’s litigation, compliance, and regulatory actions.

“The ISO certification is not mandatory,” said Brian Castro, Senior Vice President and Managing Director of eDiscovery at Merrill Corporation. “It is a standard sought by companies worldwide who are committed, like Merrill, to best practices in data security. We understand the premium placed on security when working with partners and through the ISO/IEC 27001:2013 certification process, we commit to bringing the industry’s most stringent security standards to all of our customers, now and into the future.”

The certification scope also includes Merrill’s international eDiscovery operation based in London. In addition, Merrill Corporation renews the same ISO/IEC and European standards (EN) certifications for the following businesses:

  • Merrill Brink® International language translation services
  • Merrill DataSite® secured virtual data room (VDR) services
  • Merrill Marketing and Communications Solutions
  • Merrill London based Court Reporting and Financial Printing
  • Merrill Technology Services India
About Merrill Corporation

Merrill Corporation provides technology-enabled platforms for secure content sharing, regulated communications and disclosure services. Clients trust Merrill’s innovative applications and deep subject expertise to successfully navigate the secure sharing of their most sensitive content, perfect and distribute critical financial and regulatory disclosures, and create customized communications across stakeholders. With more than 3,800 people in 41 locations worldwide, clients turn to Merrill when their need to manage complex content intersects with the need to collaborate securely around the globe.


Media Relations

Kris Slethaug


Investor Relations

Bradley Carlson


This site uses cookies to offer you a better experience. For more information, view our privacy policy.