Flyout Menu

Accredited

  • Certification in accordance with ISO 27001 by TÜV AUSTRIA Deutschland GmbH

Information is the basis for the course of business and production processes and for communication with customers and partners. To provide appropriate protection for business information, effective processes, such as those that are mapped in an information security management system (ISMS), are required. The internationally recognised standard for ISMS is ISO 27001. Certification in accordance with ISO 27001 means that ISMS processes and measures are subject to constant independent review. By means of a certification, companies can additionally demonstrate to their customers and partners the efficacy and efficiency of the ISMS along with the fact that the ISMS is regularly checked by independent auditors such as TÜV TRUST IT’s. Using tried and tested methods and tools to assess the management of information security, security concepts and organisational and technical measures, TÜV TRUST IT can identify specific vulnerabilities and highlight improvement potentials. TÜV AUSTRIA Deutschland GmbH will be happy to support you with accredited certification.

Your Benefits

  • Independent and internationally recognised proof of appropriate information security for partners and authorities
  • Lasting improvement of ISMS processes by means of regular reviews
  • Avoidance of unforeseen costs due to security incidents
  • Build-up of trustworthiness and security ISMS certification is proof of value promises and ensures lasting maintenance and development of information security
  • TÜV Austria Deutschland GmbH is happy to be of assistance with your certification projects
Request now
  • Digital health and nursing applications (DiGA / DiPA)

Digital health and nursing applications (DiGA / DiPA) are special applications from the healthcare sector. As these usually handle strictly confidential data, there is a high need for protection with regard to the security of the applications and their associated processes.

We offer comprehensive support in implementing and securing digital health and nursing applications. Our services include the development of an information security management system (ISMS), the implementation of protection needs analyses, secure software development, data protection management, penetration tests and audits in accordance with the requirements of the German Federal Office for Information Security (BSI). You benefit from our years of experience and close dialogue with the relevant authorities such as the BSI and the BfArM.

Your Benefits

  • Compliance with the highest security and data protection standards
  • Minimisation of the risk of financial losses due to security incidents
  • Increased trustworthiness among patients and users
  • Optimisation of processes
  • Information security management and protection of sensitive data

Portfolio

  • ISMS set-up according to ISO-27001 or BSI 200-2
    • Protection requirements analysis
    • Release, change and configuration management
  • Secure software development and threat modelling
  • Data protection management
  • Audit according to TR-03161
  • Penetration tests
    • Code reviews, whitebox
    • Incl. backend
    • OWASP Top 10 and BSI guidelines

Additional information

  • BSI modules
    • APP1.4 Mobile applications (apps)
    • APP3.1 Web applications
    • SYS.4.4 General IoT device

 

As a BSI-certified testing laboratory, we ensure that your digital health and care applications meet the highest security and quality standards

Request now
Contact

"*" indicates required fields

This field is for validation purposes and should be left unchanged.
Name*
Data privacy*