Secure and certified IT infrastructure

We operate digitally and within a private cloud environment. Hence, certified IT security is crucial for our services. To this end, we have taken the following precautions:

IT security

• Highly available unified threat management firewall
• Innovative virus-scanning technology with advanced threat protection
• Regular penetration testing
• 24/7 monitoring
• Holistic Security Concept
• ISO 15408 and ISO 18045 certified firewall
• Access via encryption technology and two-factor authentication only

Data-processing centre

• 24/7 on-site security
• 24/7 NOC availability
• Video surveillance
• Admission control
• N+1 USV and generator redundancy
• N+1 redundant climate control
• Certification:
  • ISO 9001
  • ISO 14001
  • ISO 18001
  • ISO 27001
  • PCI DSS
  • ISAE 3402-SOC1
  • ISAE 3402-SOC2

IT Operations

• Secure IT environment with enterprise technologies (HP, Microsoft, Citrix, Sophos)
• IT configuration based on the IT baseline protection guidelines issued by the BSI (Bundesamt für die Sicherheit in der Informationstechnik – German Federal Office for Information Security)
• ITIL-based ITSM (IT Service Management)

Software Certification

The auditor tested our DMS (Document Management System) pursuant to the IDW PS 880 auditing standard to certify that under appropriate application, the DMS facilitates financial accounting in accordance with the GoBD (German principles of orderly accounting).