PPDA Earns Prestigious ISO/IEC 27001:2022 Certification, Becoming First Among Ten UDAP-Selected Government Entities to Reach the Milestone

The Public Procurement and Disposal of Public Assets Authority (PPDA) has achieved a major milestone in its digital transformation journey after attaining the internationally recognised ISO/IEC 27001:2022 Certification, becoming the first among ten Government entities selected under the Uganda Digital Acceleration Project (UDAP) to receive the prestigious accreditation. The certification affirms that the Authority’s Information Security Management System (ISMS) meets globally accepted standards for protecting information assets and managing cybersecurity risks, further strengthening public trust in Uganda’s procurement regulatory framework.

The certification was officially celebrated during a Certificate Handover Ceremony held on 13 June 2026 at the PPDA Auditorium, PPDA–URF Towers in Kampala. The event was graced by the Minister of ICT and National Guidance, Rt. Hon. Justine Kasule Lumumba, as Guest of Honour and attended by officials from the National Information Technology Authority of Uganda (NITA-U), representatives of the Ministry of Finance, Planning and Economic Development, development partners, members of the PPDA Board of Directors, management, staff, and the media.

Speaking at the event, Rt. Hon. Lumumba commended PPDA for demonstrating leadership in secure digital governance and setting the pace for other public institutions. She noted that as Government accelerates the digitisation of public services, information security must remain a top priority, adding that internationally recognised standards such as ISO/IEC 27001:2022 are essential for building public confidence, protecting sensitive data, and promoting transparency and accountability in service delivery. She further encouraged public entities to embrace robust information security practices as a foundation for efficient, citizen-centred, and digitally enabled governance.

Minister of ICT and National Guidance, Rt. Hon. Justine Kasule Lumumba, officially hands over the ISO/IEC 27001:2022 Certificate to PPDA Board Chairman, Mr. Julius K. Ishungisa, and PPDA Executive Director, Canon Benson Turamye, during the Certificate Handover Ceremony.

For PPDA, the certification represents much more than compliance with a technical standard. It reflects the Authority’s unwavering commitment to excellence, institutional resilience, and continuous improvement as it regulates a sector that accounts for a substantial share of Government expenditure. By strengthening the security of procurement information and digital systems, PPDA is enhancing its ability to deliver effective oversight while supporting Uganda’s broader digital transformation agenda.

The Chairperson of the PPDA Board of Directors described the achievement as a landmark in institutional governance, emphasising that “this milestone is not merely about obtaining a technical certificate. It is a serious governance achievement. Secure procurement is fundamentally about protecting public value.” He observed that secure information management strengthens accountability, risk management, service continuity, and public confidence while safeguarding the integrity and fairness of procurement processes across Government. He further urged the Authority to sustain the standard through continuous improvement and by embedding information security into everyday operations.

Echoing this vision, the Executive Director of PPDA, Canon Benson Turamye, described the certification as a strategic investment in the future of public administration. He remarked that “PPDA’s ISO/IEC 27001:2022 certification is more than an organizational achievement. It is a statement about the future of public administration in Uganda, a future where digital innovation is matched by strong governance, where efficiency is complemented by accountability, and where public trust is strengthened through internationally recognized standards.” He added that the milestone reinforces PPDA’s readiness to support secure digital procurement and positions the Authority to lead by example as Uganda rolls out the Electronic Government Procurement (e-GP) system across Government.

PPDA staff celebrate the Authority’s attainment of the ISO/IEC 27001:2022 Certification.

Supported by NITA-U through the Uganda Digital Acceleration Project, the ISO/IEC 27001:2022 certification demonstrates Government’s commitment to ensuring that digital innovation is underpinned by robust information security practices. It also places PPDA at the forefront of promoting secure, transparent, and accountable governance at a time when public procurement is increasingly driven by digital technologies.

As the regulator of public procurement and disposal in Uganda, PPDA recognises that secure information systems are fundamental to achieving value for money, enhancing transparency, and maintaining stakeholder confidence. With public procurement accounting for more than 60% of Government expenditure, strengthening information security is critical to safeguarding public resources and enabling efficient service delivery. The Authority therefore remains committed to protecting procurement data, strengthening institutional integrity, and fostering innovation in pursuit of its vision of “a dynamic facilitator of the public procurement and asset disposal system for sustainable national development.”