Eupago is ISO/IEC 27001:2022 certified

Eupago has achieved ISO/IEC 27001:2022 certification for its Information Security Management System, reinforcing its commitment to security, trust and the continuous improvement of the processes that support its payment solutions.

View certificates Explore payment solutions

AENOR Segurança Informação ISO/IEC 27001

Certification and security

What is
ISO/IEC 27001:2022?

ISO/IEC 27001:2022 is an international standard for information security management systems.
In practice, it sets requirements for companies to identify risks, implement controls, monitor processes and continuously improve how they protect the information under their responsibility.
For companies operating in payments, data and digital services, this certification is an important sign of operational maturity, internal discipline and commitment to good security practices.

Certified scope

What has been certified at Eupago?

The certification awarded to EUPAGO - INSTITUIÇÃO DE PAGAMENTO focuses on its Information Security Management System.

Information security management system that supports the provision of payment methods, the provision of account information services, the provision of payment initiation services, and the management of payment accounts.

            In other words, the certification is linked to the processes that support Eupago's activity as a payment institution, including essential services for companies that depend on reliable payment solutions.
        

Customers and partners

What does this mean for customers and partners?

More than a certificate, this certification reinforces Eupago’s commitment to trust, transparency and continuous improvement. It reflects the adoption of information security practices and management processes covered by the certified system.

Processes assessed according to international standards, with a focus on information security management.

Greater transparency around Eupago's commitment to security and compliance in an industry where reliability is essential.

An additional trust factor for companies that rely on digital payments, integrations, account services and operational processes based on security best practices.

An ongoing commitment to improvement, as certification requires continuous monitoring, review, and maintenance of the management system.

Explore payment solutions

Certification

Certification details

Details of the ISO/IEC 27001:2022 certification that attest to Eupago's commitment to information security.

Certified organization EUPAGO - INSTITUIÇÃO DE PAGAMENTO, LDA.

Certification body AENOR

Standard ISO/IEC 27001:2022

Certificate number SI-0082/2026

Certified system Information Security Management System

First issue date 7 May 2026

Valid until

7 May 2026 7 May 2029

View certificates

The certificates are available in Portuguese, English, and Spanish.

PT ISO/IEC 27001:2022

View the official version in Portuguese

Portuguese certificate

EN ISO/IEC 27001:2022

View the official version in English

English certificate

ES ISO/IEC 27001:2022

View the official version in Spanish

Spanish certificate

The documents include the certification details, certification body, validity period and certified scope.

Frequently Asked Questions

What does ISO/IEC 27001:2022 certification demonstrate?

The certification demonstrates that Eupago's Information Security Management System has been assessed and certified in accordance with the requirements of the ISO/IEC 27001:2022 standard, within the defined scope. In practice, it shows that processes, controls and management practices are in place to support information security, with monitoring and continuous improvement.

How is the ISO/IEC 27001:2022 audit process carried out?

The audit process includes the analysis of security documentation, procedures and records, as well as the practical verification of processes in Eupago's day-to-day operations.
It may also include interviews with teams and an assessment of how security controls are implemented, monitored and maintained.
This helps confirm that the Information Security Management System is not only documented, but also integrated into the Eupago’s practices and responsibilities.

What is an Information Security Management System?

It is the set of policies, processes, responsibilities and controls that an company uses to manage information security in a structured way.
Its purpose is to support the confidentiality, integrity and availability of information through consistent management, monitoring and continuous improvement practices.

Where can I access the certificates?

You can access the official certificates on this page, available in Portuguese, English and Spanish. View Certificates

How long is the certificate valid for?

The certificate is valid until 7 May 2029.

What is AENOR?

AENOR is an international certification, inspection and training organization, recognized in the Iberian and European markets for the assessment and certification of management systems.
In Eupago’s case, AENOR was the entity responsible for assessing and certifying the conformity of the Information Security Management System with the requirements of the ISO/IEC 27001:2022 standard, within the certified scope.

Security, trust and payments built on solid foundations.

ISO/IEC 27001:2022 certification reinforces Eupago’s commitment to information security and the continuous improvement of the processes that support its payment solutions.
Looking for payment solutions for your company? Talk to our team.

Explore payment solutions

	Lisboa
	Rua General Firmino Miguel, n.º 12 C 1600-300 Lisboa, Portugal

	Porto
	Praça Artur Santos Silva, 74 4200-534 Porto, Portugal

	Madrid
	Cost.ª de los Desamparados, 2 28014 Madrid, España

Cookies policy

Fraud prevention

Eupago is ISO/IEC 27001:2022 certified

What is ISO/IEC 27001:2022?

What has been certified at Eupago?

What does this mean for customers and partners?

Certification details

View certificates

Frequently Asked Questions

What does ISO/IEC 27001:2022 certification demonstrate?

How is the ISO/IEC 27001:2022 audit process carried out?

What is an Information Security Management System?

Where can I access the certificates?

How long is the certificate valid for?

What is AENOR?

Security, trust and payments built on solid foundations.

I would rather ask you to contact me

EUPAGO - INSTITUIÇÃO DE PAGAMENTO, LDA.

PHONE

E-MAIL

HEAD OFFICE

OFFICE

What is
ISO/IEC 27001:2022?