Security & quality certification

Accetera possesses the necessary competencies and certifications to provide all services you have requested. We are compliant with all relevant legal acts, formal obligations, internal security and quality rules which integrated into our local software solutions, day-to-day operations, corporate environment, and employees’ behaviour.

We ensure the highest level of personal data security, service quality and delivery discipline. We are certified for compliance with international standards:

• ISO 27001 – an international standard that incorporates the requirements for the establishment and further development of Information Security Management System
• ISO 9001 - an international standard that sets forth the criteria for Quality Management System. We are also fully compliant with GDPR and guarantee the highest standards of data security.
• ISAE 3402 – an international standard that provides assurance to a service organization's customers that it has a properly functioning internal management system. The standard involves an audit of the operational effectiveness of service quality controls in service organizations, and confirms the effectiveness of procedures and controls and the high quality of the service process management system. 

We also fully comply with the requirements of the General Data Protection Regulation and guarantee compliance with data protection standards.

Furthermore, we have a comprehensive business continuity plan (BCP) and disaster recovery plan (DRP) in place, so we can guarantee business continuity under all circumstances. Risk factors are evaluated based on a matrix describing the correlation between the level of probability of their occurrence and their negative impact on the system. The BCP is tested annually - Checklist testing, Walkthrough testing, Full-interruption testing - following an internally documented process and customized according to the best practices.

Information Security Management

• ISO 27001 certification
• A BCP and DRP are in place for 24/7 continuity of services
• Regular risk management process
• Secure portal for data exchange
• Strong password policy
• Continious control of systems and data access
• Technical security
• Regular security training for relevant employees

Quality Management

• ISO 9001 certification
• Regular review of client satisfaction / client feedback / Evaluation of the success of provided services via KPIs and SLAs
• Four-eyes principle
• Regular legislation trainings and strong educational programs
• Recording and monitoring of discrepancies
• Professional liability insurance of up to 5 000 000 EUR
• Type 2 SOC 1 & ISAE 3402

Compliance

Compliance with all relevant legal acts, formal obligations and internal security and quality rules in all active countries, including GDPR.