Ongoing is a Swedish software company specializing in a web-based Warehouse Management System (WMS) for logistics-intensive companies in 30+ countries, including Third-Party Logistics (3PL) providers and those managing their own warehousing.

Ongoing’s main compliance goals were to continuously reduce risk and achieve strong GDPR and industry-specific standard compliance. By partnering with A-LIGN and Vanta, Ongoing achieved ISO/IEC 27001 certification with a high-quality and efficient audit experience.

The challenge

For logistics companies operating in regulated industries, warehouse management software is business critical. Ongoing understood that to support these high-stakes operations, they needed to provide additional assurance that client data always remained secure.

While Ongoing already maintained strong security practices, these efforts were divided across teams in the organization. They lacked a unified internal system to track policies, evidence, and control ownership. To comply with increasing demands from enterprise customers and meet GDPR requirements, the company needed to move from distributed processes to a structured Information Security Management System (ISMS).

The primary goal was to achieve ISO 27001 certification, an internationally recognized gold standard for information security. With a global customer base, Ongoing wanted to assure clients that their data was safe, regardless of location.

However, they needed a partner who could turn the rigorous certification process into a manageable, streamlined journey. The Ongoing team searched for a trusted audit partner with a global presence and partnered with a compliance automation platform that offered the capabilities required to stay organized and audit ready.

“We knew ISO 27001 would require a level of structure and rigor that demanded an audit partner with deep expertise and a proven track record in our industry. A-LIGN stood out — they brought the leadership, clarity, and experience we needed to turn a complex certification into a manageable, confidence-building process.”
– Fredrik Einarsson, CEO

Why A-LIGN

Ongoing sought an auditor with deep expertise in cloud-based SaaS environments and a methodology that prioritized quality and efficiency. After thorough research, they selected A-LIGN as their certification body.

A critical factor in this decision was A-LIGN’s partnership and extensive experience working with Vanta, the compliance automation platform Ongoing had selected to centralize their ISMS. Because A-LIGN is well-versed in Vanta’s evidence collection and control monitoring capabilities, expert auditor experience, and cutting-edge technology worked in tandem to streamline the audit process.

With decades of experience and over 4,000 ISO assessments completed, Ongoing was confident that A-LIGN would deliver the high-quality audit they needed to achieve certification and provide third-party assurance to key stakeholders that their data was safe.

“A-LIGN delivered the independent assessment and certification, while Vanta provided structure and automation. Their tools and processes complemented each other and reduced the administrative workload for our team.”
– Fredrik Einarsson, CEO

The results

By leveraging A-LIGN’s rigorous assessment process alongside Vanta’s automation and readiness capabilities, Ongoing successfully achieved ISO 27001 certification, delivering tangible benefits across the organization.

The synergy between A-LIGN’s audit methodology and Vanta’s automated evidence gathering significantly reduced the administrative burden on internal teams. This streamlined process improved the overall experience of the certification journey by minimizing obstacles and simplifying progression.

Additionally, the partnership accelerated sales cycles for Ongoing. With a credible, high-quality audit report from A-LIGN, the company can now simplify customer due diligence, building trust and expediting key business transactions.

Ongoing also enhanced transparency through the creation of its public-facing Trust Center with Vanta. This allows customers to access security controls and certifications on demand, minimizing friction during audits and enabling Ongoing’s clients to complete Vendor Security Evaluations independently.

Lastly, the partnership further strengthened Ongoing’s security posture. Security has always been a key priority and is now an integrated, automated function, thanks to A-LIGN’s deep expertise and Vanta’s centralizing technology. Their ISMS now tracks policy acceptance, risk updates, and asset inventories in real time, ensuring a robust and cohesive approach to security.

“Achieving ISO 27001 certification is a key milestone in Ongoing’s compliance journey. We will maintain certification through annual surveillance audits and continuously improve our ISMS with the partnership we have forged with A-LIGN, our trusted audit provider.”
– Fredrik Einarsson, CEO

Ongoing’s commitment to transparency and security continues to set new standards for the logistics sector. With the right technology and partners in place, the company looks forward to building even greater trust with its clients and meeting the evolving requirements of the industry.

About Ongoing Warehouse

Ongoing develops and markets a Warehouse Management System called Ongoing WMS as Software-as-a-Service (SaaS) with accompanied professional services. They are simplifying and connecting logistics for thousands of companies globally. For more information about Ongoing, visit: http://www.ongoingwarehouse.com.

About Vanta

Vanta is the leading agentic trust platform that helps businesses earn and prove trust. Over 14,000 companies like Atlassian, Duolingo, Golden State Warriors, Icelandair, Ramp, and Synthesia rely on Vanta to earn and prove trust continuously. Founded in 2018, Vanta serves customers in 58 countries with offices in Dublin, New York, San Francisco, Sydney, and London.