ISO 27001: making sure your data is secure

Maxdoro is certified to the latest standard (ISO 27001:2022) - That gives peace of mind for compliancy and privacy.
Master the field

ISO 27001: making sure your data is secure

What-Is-ISO

What is ISO 27001?

An ISO 27001 certification proves that an organization has established, manages and continuously improves a complete Information Security Management System (ISMS). So it's about a process (assessing risks, choosing control measures, doing PDCA cycle), not just technology.

Scope of our certification

  • Scope statement: Develop, implement and maintain proprietary software products, also providing support and consulting services to our customers. This involves compliance with the applicable management measures of the NIS2 guideline.
  • Why relevant to you? All parts of the Incontrol chain such as development, hosting, support etc., fall within the scope of the audit.
The-Scope-of-Certi_V2
Borgen

How do we safeguard your data?

Hosting Microsoft Azure West-Europe; geo-replica in North-Europe
Data traffic

Always TLS ≥ 1.2; passwords hashed (bcrypt)

Backups & uptime 99.8% platform SLA, point-in-time backups up to 7 days back, weekly backups up to 5 weeks back.
Access management "Need-to-know" access, logging of all actions
Business continuity BC plan tested annually according to ISO 27001 & NIS2

 

Continuous improvement

Our ISMS is reviewed internally and externally every year (internal audit, management review, certification audit) and constantly updated according to the PDCA cycle.

Improve_V2
NIS2

Linking with NIS2

Our scope explicitly includes ISO inspections expanded to include NIS2 requirements, so inspection companies will soon be demonstrably compliant in their chain.

Our promise in five bullets

Incontrol-audit-icon-NL

Zero
surprises

clear processes & logging

Incontrol-security-icon-NL

Privacy by design

minimal data, masking where necessary

icons8-cloud-sync

Always available

99.8% uptime & geo-replica

icons8-maintenance

Continue to improve

PDCA and external audits

icons8-collaborating-in-circle

Chain
safety

PDCA and external audits

Frequently Asked Questions

Yes, reaffirmed based on the 2022 standard. Certificate copy upon request.

At least annually and during major changes in business or technical architecture.

Yes, in employment contract and NDA for externals.

Limited; proprietary devices for email/Teams, company laptops with MDM required.