Goelett has defined and certified with ISO 27001 software development cycle. Quality assurance, privacy and security is taken into consideration from the planning phase of each change. The this stage analysis or risk is reviewed to make sure security and privacy requirements are satisfied and test scenarios are planned. During implementation phase code is reviewed in peer review process and checked by automated vulnerability scans. Each increment of the code goes through series of automated and manual tests. After all checks are made new version of the application can be deployed by automated and tested processes on sandbox environment first and then on production environment.