Certifications

ISO 9001

Quality Management System

Ristocloud Group is certified ISO 9001:2015 for the analysis, design, development, and delivery of cloud services in SaaS mode for collective and commercial catering. This certification confirms that all our processes are managed according to international quality standards, with controlled procedures and continuous improvement, ensuring reliability and measurable results for both public and private clients.

ISO 14067

Product Carbon Footprint (CFP – Systematic Approach)

Ristocloud is certified ISO 14067:2018 for the Product Carbon Footprint Management System applied to the dishes included in the “EcoLunch” tool. Assessing emissions throughout the entire meal lifecycle — from raw material production to delivery — enables us to measure, communicate, and reduce the environmental impact of our solutions, supporting our clients in achieving their sustainability goals.

Product Certification – RISTOCLOUD IT Platform

The Ristocloud IT platform is certified by an independent third-party body for the management of food information, including allergens and nutritional values, in compliance with Regulation (EU) 1169/2011 and the UNI 11584 standard for collective catering. This certification provides our clients with a reliable tool for menu planning and accurate consumer information, in full compliance with current regulations.

Accreditation on the ACN Marketplace

Ristocloud is accredited on the marketplace of the National Cybersecurity Agency (ACN) for the provision of ICT services and cloud solutions. This inclusion demonstrates that our platforms comply with the technical and security requirements required by the Agency, offering public administrations and national stakeholders a reliable and verified tool for digital transformation.

ACN Marketplace

ISO/IEC 27001:2022

Information Security

The ISO/IEC 27001:2022 certification confirms the adoption of a structured Information Security Management System aligned with international best practices. Ristocloud safeguards the data of public institutions and private companies through organizational and technological controls, risk management, and continuous monitoring procedures, ensuring the highest level of protection for the information processed by our cloud services.

ACN Recognition as an “Important Entity” under NIS2

ACN has designated Ristocloud as an “important entity” for the provision of ICT services and digital infrastructures in accordance with the NIS2 Directive. This recognition places our company among the strategic operators responsible for ensuring the continuity and security of essential services, confirming Ristocloud’s commitment to responsible cyber risk management and the protection of critical digital infrastructures.

Compliance with ISO 22301 – Business Continuity

Ristocloud has designed its Business Continuity Management System in compliance with the international ISO 22301 standard, adopting a structured approach to operational continuity management. We regularly analyze risks and impacts on the services provided, define response plans and recovery procedures, and conduct periodic tests to ensure the resilience of our cloud platforms.

This enables us to guarantee our clients — particularly public institutions and organizations managing essential services — the continuity of ICT services even in the event of unforeseen or critical incidents.

Compliance with ISO/IEC 20000 – Service Management

Ristocloud’s IT service management is inspired by the principles and requirements of the ISO/IEC 20000 standard for IT Service Management. We have defined structured processes for service delivery, monitoring, and improvement, with particular focus on the management of requests, incidents, and changes.

This operational model enables us to ensure clear service levels, measurable response times, and continuous improvement of our customers’ experience across all platforms and cloud services we provide.