Security program for GDPR as a plan how to to achieve the compliance with General data protection regulation - GDPR 2016/679 EU.
We offer development of security program of personal data protection for building compliance with the General data protection regulation - GDPR 2016/679 of the European Parliament and Council
The security program for building compliance with the General data protection regulation - GDPR 2016/679 of the European Parliament and Council it is based on standards ISO/IEC 27001 Information security management systems.
Why the security program?
Because it proposes the information security management system and includes and plans specific technical and organizational measures to be taken in order to achieve an adequate level of protection of personal data pursuant to the Regulation (EU) 2016/679 of the European Parliament and Council of 27 April 2016 (GDPR)..
Security program includes
Formulation of basic security objectives and scope: specification of technical and organizational security measures to ensure the protection of information and the method of its use.
Information system security analysis: detailed analysis of the state of security in terms of a possible breach of confidentiality, availability, and integrity of information.
Security measures: specific proposals of technical, personnel and organizational measures and procedures (guidelines).
Our company has been actively working in the field of information technologies
Our experiences, knowledge and active activity in the field of information technologies enable us to process the security analysis and IT system project in a competent way.
Compliance of the outputs with the intra-company guidelines and processes
Examination of the existing documentation (English) and adaptation of our outputs to the existing guidelines and organisation processes already implemented.
Stability of the company
Continuity of our activity: our company has been working in the field for more than 14 years.
Person responsible for qualified consulting
Ing. Daniel Bednárik, education: Faculty of Applied Informatics, Tomas Bata University in Zlín, field of study: Engineering Informatics, Security Technologies.
Internationally accepted and accredited CISM certificate of the ISACA organisation
CISM (Certified Information Security Manager) certificate is intended for experienced information security managers and has been designed to provide an assurance to the executive management that its holders have the required knowledge and skills to perform efficient security management.
The list of the Isaca Slovakia certificate holders (www link).
Certificate of internationally accredited training IRCA, ISO 27001
Ing. Daniel Bednárik passed an internationally accredited training for external auditors/lead auditors for ISO 27001. The accreditation is covered by IRCA (International Register of Certified Auditors). IRCA Certificate No.: 27416.
Qualified independent auditor of the Regulatory Authority for Electronic Communications and Postal Services
Our company is included in the list of qualified independent auditors for the security audit performance in a company providing public electronic communication services.
The list is published on the Regulatory Authority’s website (www link).
Liability insurance for damage caused when providing the services in the field of information technology security in the extent as follows: EUR 100,000, (Colonnade Insurance S.A.).