ISO 27001 is the international standard for information security management. It sets out a framework for an organisation to establish, implement, maintain and continually improve their ISMS (information security management system). This standard is recognised worldwide as proof that the organisation’s information security management is aligned with best practice. This means the organisation has put in place a system to manage risks related to the security of data owned or handled.
Are you comfortable with an IT provider that is not ISO 27001 certified?