Certifications & IT Security
Proven standards for the highest requirements
Certified. Audited. Trustworthy.
The archiving and decommissioning of IT systems involves sensitive data, often from regulated industries such as pharmaceuticals, banking, insurance, or automotive. For AvenDATA, security is not an add-on but an integral part of every solution.
Our certifications, including ISO 27001 and IDW PS 880, are reviewed and renewed annually to guarantee consistently high security standards and to reliably meet current requirements.
Regular recertifications are essential, as both regulatory requirements and threat landscapes are continuously evolving. Only through annual external reviews can we ensure that security measures do not become outdated but keep pace with new risks and legal requirements.
Our security foundation:
ISO 27001 & IDW PS 880
Our processes and systems demonstrably meet the highest security standards, as evidenced by two key certifications:
ISO/IEC 27001 –
Information Security Management
This internationally recognized standard defines requirements for a comprehensive Information Security Management System (ISMS). It ensures that we systematically identify and assess risks and control them through technical and organizational measures across all processes.
IDW PS 880 –
Software audit standard of the Institute of Public Auditors (AO)
Certification under IDW PS 880 confirms that our software solutions comply with the Principles of Proper Accounting (GoBD). It provides our customers in the finance and tax environment, in particular, with clear evidence of the audit-proof nature of our ViewBox archiving platform.
Regular penetration tests
Security is not a snapshot. We therefore subject our systems to regular penetration tests by independent external specialists. Potential vulnerabilities are specifically identified and immediately remedied before they become risks. These tests are performed at least once a year and document our proactive security strategy.
Certified data centers
in Germany
We operate our hosting infrastructure exclusively in certified German data centers that are run in accordance with ISO 27001 and ISO 9001. This meets the highest requirements for data protection, resilience, and physical security, which is essential for customers with particularly sensitive data.
Multi-level
control system
All security-relevant processes at AvenDATA are subject to a clearly structured control and monitoring framework with daily, weekly, monthly, and annual review mechanisms. The security of our systems is checked against detailed checklists with hundreds of individual items, covering everything from access controls and network security to logging and backup procedures.
These controls are fully documented and regularly analyzed to detect deviations at an early stage and initiate corrective measures. In this way, we ensure that security requirements are not only met but are continuously improved and adapted to new risks.
Quick Answers to Your Questions –
Personal and without obligation Regarding
Certifications
Personal and without obligation Regarding
Certifications
Thank you
Thank you for your inquiry.
We will contact you shortly.
We will contact you shortly.