Our Community - Where not-for-profits go for help
Follow us on Twitter Follow us on linkedIn

Security, Assurance & Government Procurement

At SmartyGrants, security, governance and compliance are foundational to how we design, operate and continuously improve our platform.

We maintain a structured, independent, three-layer assurance model and are appointed to multiple national government procurement frameworks across Australia, New Zealand and the United Kingdom.

Together, these frameworks provide our clients with confidence in our security posture, operational integrity and procurement readiness.

Layered Assurance, Not Single Certification
#

Each assurance layer serves a distinct purpose:

Layer Focus Scope
ISO/IEC 27001:2022 Certification Enterprise security governance Organisation-wide ISMS
Annual ASAE 3402 Type II Assurance Control operating effectiveness Period-based assurance
IRAP Assessment (ISM Alignment) Government security alignment Technical & regulatory posture

Government Procurement Frameworks
#

SmartyGrants (a product of Our Community) is an approved supplier under multiple national procurement frameworks. These appointments enable government agencies to engage our services through compliant, pre-approved procurement pathways.

Australia

  • DTA Software Marketplace – ERP Category 3
    Software Licensing and Services (SLS) Panel
  • DTA Cloud Marketplace
    Cloud Services and Cloud Consulting
  • DMP2 – Professional and Consulting Services

These frameworks allow Australian Government agencies to procure SmartyGrants through established Commonwealth procurement channels.

New Zealand

  • NZ Government SaaS Panel – Analytics and Business Intelligence
    Approved services: Business Intelligence, Reporting and Dashboards
  • NZ Government SaaS Panel – Content Services Software (Tier 2)
    Approved services: Process Automation Software

United Kingdom

  • Crown Commercial Service (CCS) Back Office Software 2 (BOS2)
    Lot 2 – Specialised Software Solutions (RM6285)

This framework enables UK public sector organisations across England, Wales, Scotland and Northern Ireland to procure SmartyGrants under Crown Commercial Service arrangements.

Layered Assurance & Procurement Readiness
#

Our security certifications and procurement appointments work together to provide:

  • Enterprise-grade information security governance

  • Independent validation of operating controls

  • Alignment with government cybersecurity frameworks

  • Pre-approved procurement pathways across multiple jurisdictions

This integrated model supports agencies seeking both strong security assurance and efficient procurement.

Request Documentation
#

If you require copies of our certifications, assurance reports or procurement framework details for due diligence purposes, please contact our team.