Information security is important to you. We feel the same way... why else would our company motto be: Security First! This page will go into detail about our approach to information security and privacy in order to give you the confidence that your information deserves.
![]()
|
ISO 27001:2017 CertificationISO 27001 is the international standard that provides a framework for organizations to independently demonstrate that they are in control of their Information Security. Avisi has been ISO 27001:2017 certified since 2017 and our information security is tested annually by an independent auditor. This certification shows that we continuously control our information processes and guarantees the confidentiality, integrity, and availability of (business-critical) information. We have done this by:
|
![]()
|
SOC 2 Type II ReportSOC 2 is an international standard with which IT service providers demonstrate they manage (customer)data based on a set of 'Trust Services Criteria'. These criteria include security, availability, integrity and confidentiality. It is determined whether an organization complies with SOC 2 on the basis of an assurance report. Avisi has been in possession of such a SOC 2 Type II report since 2021.
|
![]()
|
GDPR ComplianceThe European privacy law applies to all companies and organizations, including Avisi, that process personal data of customers, staff or other people from the EU. It goes without saying that we do everything we can to ensure that we meet the requirements of this legislation. To demonstrate this:
|
![]()
|
Independent AuditsWe work closely with independent third parties to test our policies and procedures in practice. These reviews are conducted at least once a year by respected audit and security firms who are independent and thorough in their evaluations. We take their reports very seriously and have implemented processes to address any concerns. External and Internal Testing of ApplicationsAt Avisi, we consider it essential that the applications we use and develop are not only of high quality but also are secure in use. In accordance with our policy and the ISO 27001 standard, our procedures include periodical activities that ensure the safety of our products and services. We do this by periodically testing our software and having it checked by a certified third party. In addition:
|
![]()
|
SecuritySince we continuously send and receive (sensitive) information, we ensure that our software and systems are as secure as possible. We guarantee this by:
We also continuously check that our software and systems meet:
|
![]()
|
Staff membersOur employees work with sensitive data every day, so it is important that you can trust us. We make sure that:
|
![]()
|
Continuous improvementThe continuous improvement of security and compliance processes, systems and information security controls is crucial for a high level of information security. We seek feedback from different teams, customers, (internal en external) auditors, suppliers and knowledge partners to continuously improve our security and privacy processes. |