Stransact, a leading professional services firm and RSM correspondent in Nigeria, together with its technology subsidiary, Doftwerks, has achieved ISO/IEC 27001:2022 certification, the globally recognized standard for Information Security Management Systems (ISMS).
This milestone affirms the firms’ adherence to the highest international standards for data protection, confidentiality, integrity, and availability; positioning Stransact and Doftwerks at the forefront of secure, enterprise-grade compliance solutions supporting Nigeria’s Nigeria Revenue Service (NRS) E-invoicing mandate.
ISO/IEC 27001:2022 is regarded as the gold standard for information security governance, requiring organisations to implement rigorous controls across people, processes, and technology. The certification confirms that Stransact and Doftwerks have established a comprehensive, independently audited framework to identify, manage, and mitigate information security risks across all operations.
“ISO/IEC 27001:2022 certification is not a badge; it is an operating discipline,” said Eben Joels, Managing Partner at Stransact.
“For our clients—particularly CFOs, CIOs, and compliance leaders—this provides board-level assurance that sensitive financial and transactional data is protected in line with the most demanding global standards. It also reinforces our commitment to supporting the NRS E-invoicing regime with solutions that are not only compliant, but secure by design.”
As Nigeria advances the implementation of mandatory electronic invoicing, data security and system resilience have become critical concerns for businesses operating at scale. Through Doftwerks, Stransact delivers technology-enabled compliance solutions that integrate seamlessly with enterprise finance systems while meeting regulatory and security expectations.
“Security is foundational to trust in any digital tax infrastructure,” said Tunde Awopegba, Chief Technology Officer at Doftwerks. “This certification validates the robustness of our platforms and internal controls and gives clients confidence that their data is handled with the same level of care expected in leading global markets.”
What the Certification means for clients…
The ISO/IEC 27001:2022 certification provides tangible benefits to organizations engaging Stransact and Doftwerks, including:
Regulatory confidence in meeting NRS E-invoicing and broader data-protection expectations; reduced information-security risk across financial, tax, and transactional data; enterprise-grade governance and controls aligned with international best practices; assurance for boards, investors, and regulators on data integrity and confidentiality; and a trusted partner for organizations operating in highly regulated or data-sensitive environments.
By embedding information security into service delivery and technology architecture, Stransact and Doftwerks continue to differentiate themselves as trusted advisors at the intersection of regulation, technology, and risk management.
Stransact is a multidisciplinary professional services firm providing audit, tax, advisory, transaction support, and regulatory compliance services to local and international clients. As an RSM correspondent firm in Nigeria, Stransact combines deep local expertise with global standards to support organizations navigating complex regulatory and business environments.
Doftwerks is the technology subsidiary of Stransact, delivering secure, scalable digital solutions across tax compliance, finance transformation, and regulatory technology. The firm specializes in building enterprise-grade platforms that align with both Nigerian regulatory requirements and international best practices.
Join BusinessDay whatsapp Channel, to stay up to date
Open In Whatsapp
