Data security and GDPR
On 25 May 2018, the European GDPR, the EU’s new data protection rules, came into force. This requires explicit consent to obtain and retain client data. We have therefore prepared a special entry form, complete with the need to confirm consent to the processing of client data and an accompanying text that describes what GDPR is all about, which can be found here.
Information Security Management
We are ISO/IEC 27001 certified for our data security management system. As of November 2020, we are proud to hold the ISO/IEC 27001 certificate for Information Security Management System. We have gone through a rigorous process to demonstrate that the protection of client and our internal data is second to none.
What is ISO/IEC 27001?
It is an international standard that defines the requirements for information security management. In particular, the information security management system manages confidential client information, i.e. those non-public data that we obtain from clients or third parties in the course of fulfilling our obligations, including working documents and outputs from this information.
What does certification bring to our customers?
ISO/IEC 27001 certification demonstrates that:
We can systematically identify and mitigate information security risks,
we have plans for business continuity management in case of emergencies,
we have better protection of confidential information and reduce the risk of hacker attacks,
we can cope more quickly with the consequences of an attack and improve our system’s ability to overcome the consequences of an emergency,
we have developed a structured and globally accepted information security methodology.
In mluvii, of course, we also think about the security of user access to the application. We offer a wide range of user access management options such as multi-level permissions, two-factor authentication or LDAP directory.