Do you start to cooperate with a company that’s going to use your data? Then it will make you feel comfortable if this company meets the highest standards for information security and that this company has optimized its processes and procedures. Confirmation that you are working with a reliable partner is assured if you choose a company that has an ISO 27001 and NEN 7510 certificate. These are exactly the certificates that Viadesk now complies with.
As a supplier of digital platforms, Viadesk always attaches great importance to data protection. Within the European Union, the legislation on personal data has become stricter within the last years. This includes GDPR legislation for instance. Unlike many countries outside the EU, the European countries now meet a high standard of data security. When the new law was announced, Viadesk started preparations to comply with the latest security requirements of ISO 27001 and NEN 7510. Because Viadesk now meets these requirements, it is clear to customers which information security protocols and associated processes Viadesk uses. This quality mark also means that when a security incident occurs, it can be solved even better and that it can be solved according to the set protocols.
Many people are familiar with the ISO quality standards. For decades, many of these standards have been known worldwide in various industries. It is therefore mainly known as a hallmark that authorities may use when they meet high set standards. When a company has a certificate, the organisation is checked by an external audit institution (in the case of Viadesk this is KIWA) for the correctness and application of the quality standards. By obtaining the ISO 27001 certificate, Viadesk shows the following:
In addition to data security, Viadesk’s transparency was particularly important. Rick Tigelaar, Operations Manager at Viadesk, said: “Internally, some needed to be organized in a better. Viadesk has been around for 20 years, but we are still a small and flexible team with offices in the Netherlands and Germany. This sometimes led to a lack of clarity about who does what. Over the past year, we have made great strides in streamlining processes and embedding quality requirements in the area of information and data security.”
A clear division of roles means that certain rights are treated with care internally. As a result, people involved in certain processes have access to the corresponding data. This reduces the chance of a data leaks.
Besides the international ISO 27001 certificate, Viadesk now also complies with the NEN 7510 certificate. While ISO focuses on international standardisation, NEN focuses mainly on the Dutch market. When both certificates are placed next to each other, they largely coincide. However, there is one difference. Whereas the ISO 27001 certificate includes ‘general’ data protection, the NEN 7510 focuses specifically on the protection of medical data. “The combination of both certifications is more common. Because with organisations such as HAweb and Municipal Health Service Zuid-Limburg we already have customers who manage special personal data, we felt it was important to comply with these guidelines as well,” explains Rick Tigelaar.
Obtaining certificates is not something you can do as a company on your own. “Focus on adapting your processes is important. That is why we have chosen to be supported in setting up the processes in accordance with the ISO and NEN quality guidelines. Herma Slot of Bureau Kader supervised Viadesk. Rick Tigelaar is enthusiastic about the collaboration with her. “The knowledge and experience Herma brought with her has taken us through the long process”.
The external audit was executed by KIWA. As an accreditation authority, KIWA is able to test the processes and application of the quality guidelines and award an ISO and NEN certificate on this basis. The various audits that have taken place have convinced KIWA that Viadesk has its internal organisation in order and that it meets the quality requirements in accordance with ISO 27001 and NEN 7510.
Data protection technology is constantly changing. Maintaining the certificate will therefore require continuous efforts. The certificate involves a cycle of three years. But in between there will be an annual audit to see if Viadesk still meets the requirements.
As Viadesk always did, the company will keep putting a lot of effort to ensure the safety of its users. In fact, Viadesk is already working on the next certificate. “The ISO 9001 quality mark will be our next goal,” says Rick Tigelaar. The ISO 9001 is perhaps the best-known international certificate. During this certification we look at the quality management systems of companies. With this, Viadesk once again shows that it can set up the quality of its product.
A good and secure platform that all users can use with peace of mind, these are the core values that Viadesk has stood for for more than 20 years. By obtaining the ISO and NEN certificates, (potential) customers are even more certain that their sensitive information is in good hands when using Viadesks Digital Workplace solutions.
Are besides data protection interested how Viadesk works? Try it yourself with the free demo!