We regularly receive questions about the security of personal data processing and sensitive company information by We Cross. Well, that’s fine! We are not only prepared for the general data protection (AVG) regulation, the new privacy law that applies to all of Europe as of May 25 2018. We also live up to it with our ISO certificates for information security and quality management.
As a first processor of public and marketing data of events, we have obtained ISO27001 certification. The strict ISO 27001 is the internationally recognized standard for the Information Security Management System (ISMS), published by the International Standardization Organization (ISO), which describes how information security in a company can be managed, and confidential information remains confidential.
Because We Cross works with company-sensitive data from organizations, we see it as our responsibility to confidentially treat this information provided to us and to protect the privacy of personal data. The information security level set up in accordance with ISO 27001 has been tested in an external multi-day audit by Digitrust, which has made the Board of Accreditation decide to certify our information security. This shows that our information security level and the processes around it, as well as the overview and management of our IT organization are well in order. Many risks to information security are due to the human factor. Good information security is especially awareness of all employees, both at the workplace and at management level and inside and outside the organization.
In addition to guarantee the quality of information security We Cross has set the
ISO 9001 standard for quality management systems and obtained the ISO 9001: 2015 certificate.
If you would like to know more about this, check out the ISO (International Organization for Standardization) website. Soon we will publish more about the new European Privacy Act (AVG) and what that means for event organizations.