About kolum

kolum is a Berlin-based startup tackling the challenges of CBAM compliance. As a new EU regulation, CBAM requires companies to report and pay for CO₂ emissions embedded in imports. kolum automates this process and helps businesses gain better supply chain visibility and make more sustainable purchasing decisions.

Website

https://www.kolum.earth/en

Location

Germany, Berlin

Industry

B2B SaaS

Employees

2-10

The Challenge

ISO 27001 certification was crucial for kolum’s enterprise growth

As kolum began partnering with enterprise clients, information security quickly became a top priority. Achieving ISO 27001 certification became essential to demonstrate kolum’s commitment to protecting sensitive data and maintaining high operational standards.

“Getting ISO 27001 certification was the best way to meet those expectations and show our commitment to quality and security,” says Michelle, founder associate at kolum. “It was our first ISO process, and we needed a clear, structured way to tackle it.”

The Solution

Turning complexity into clarity with Secfix

kolum partnered with Secfix to guide their ISO 27001 journey from start to finish. The platform provided everything they needed to move forward with confidence.

“Secfix gave us clear guidance from the beginning,” Michelle explains. “We had an overview of requirements, documentation, and actual implementation steps. It helped us assign responsibilities and maintain a strong project momentum.”

Weekly check-ins with their customer success manager helped them stay on track and solve any challenges that came up along the way.

Favorite part of the platform? Manual evidence uploads.

“Seeing all the green ticks after uploading evidence was so rewarding,” she says. “It helped a lot during implementation.”

‍

Why Secfix

Ideal partner for ISO 27001 certification

Secfix stood out as the ideal partner for kolum’s ISO 27001 certification journey thanks to its structured, user-friendly approach and hands-on support.

From day one, Secfix provided a clear roadmap tailored to first-time ISO applicants. The platform simplified what could have been an overwhelming process, offering intuitive tools for task management, documentation, and evidence collection - all in one place.

“The platform made everything feel manageable,” Michelle recalls. “It broke down the complexity into actionable steps and gave us the structure we needed.”

What truly set Secfix apart was the level of support. With regular check-ins and direct access to an experienced customer success manager, kolum felt supported at every stage. Challenges were addressed quickly, and the team never felt like they were navigating the process alone.

Secfix’s combination of automation, expert guidance, and responsive service helped kolum achieve certification efficiently – without compromising on quality or control.

‍

Results

Saving time and strengthening internal processes with ISO 27001

kolum completed their certification in just three months - from starting in mid-January to receiving the certificate by April. “ISO 27001 certification has already helped us accelerate enterprise conversations,” Michelle shares. “We prioritized it because it directly impacts how fast we can move forward with clients.” Responding to security questionnaires has become dramatically more efficient, reducing what used to take hours into a simple checkbox. The ISO process also had a positive internal impact. It boosted awareness of risk management, process structure, and overall operational discipline across the team. “It was our first time going through an ISO certification, and it really strengthened our internal processes,” Michelle notes. “It’s a great starting point for building robust operations.”

Secfix made the process smooth, fast, and clear. The software is easy to use, and the team is super professional. I’d definitely recommend it.

Michelle Jessie Huang

Founder Associate @ kolum