Dona proudly achieves two ISO certifications

Why did Dona choose to become ISO certified?

Obtaining these certifications demonstrates our commitment to high standards, in both delivering quality and how we protect the information that we hold. The certifications show that we operate efficiently, meet legal and contractual requirements, and give our clients confidence that we operate in a compliant way. They also support us in scaling by ensuring we have the right processes in place.

What did Dona have to achieve, have in place or need to show to be certified?

For ISO 9001, we had to demonstrate that we’re consistently delivering a quality service, from the first contact we have with a charitable organisation, past the point of sale and on to demonstrating continuous value through our customers’ ongoing relationship with our platform. Effectively, that loop never closes. That includes having clear processes, documenting how we work, reviewing feedback, measuring performance, and continuously improving.

For ISO 27001, we demonstrated that we manage information securely — from access controls and backups to how we handle personal data, respond to incidents, and manage supplier relationships. It covers everything from remote working and software development to physical security and cloud systems. Every policy and directive we had in place was reviewed, tested, and aligned with global best practice.

In both cases, we had to evidence not only the systems we’ve built but also how well they’re understood, implemented, and maintained by the team. The foundations of both certifications are relevant to everyone in the business and everything that we do.

What effect does Certification have on Dona as a business?

These certifications help us work and scale in an intelligent and secure way, while maintaining the agility that allows Dona to grow in the market. Internally, they bring structure and consistency which reduces mistakes, and highlights ways in which Dona can improve. Externally, the certifications demonstrate to partners, customers, and regulators that we take quality and security seriously, potentially opening doors to new opportunities and reassuring stakeholders that their business is secure with Dona.

What does the certification mean for Dona customers?

The bottom line is that our customers can have greater confidence in us. ISO 9001 ensures we are committed to delivering a consistently high standard of service, and ISO 27001 ensures that their data and information is being handled with care, following globally recognised best practice. It also means we are actively assessing risks, preventing issues before they happen, and constantly improving how we work.

These certifications are not a ‘one-off’. We audit internally on an annual basis, as well as annual audits from an external auditor. This ensures our ongoing commitment to maintaining the standards and not just meeting their requirements once.