Asseco SEE in Serbia among First Companies in Europe Holding Certificate of Compliance with GDPR and Related Privacy Legislation

Asseco SEE in Serbia is among the first companies in the private sector in Europe that has been awarded the accredited certificate related to personal data protection having successfully implemented the requirements of the international standard ISO/IEC 27701:2019 within its business processes and completed certification audit with great success. The certificate confirms the company’s capabilities to manage personal information related to both clients and employees, and to ensure compliance with GDPR and other personal data protection regulations as well as transparency of implemented privacy management controls.

The certification audit was conducted by the leading auditors of CIS – Certification & Information Security Services GmbH, a partner of Quality Austria, which is Asseco SEE’s business partner in the domain of international standards. Quality Austria and CIS are internationally operating organizations that support their clients in nearly 30 countries.

ISO/IEC 27701:2019 standard, abbreviated as Privacy Information Management System (PIMS), represents an extension of data privacy to ISO 27001 standard. The newly published information security standard provides guidelines for the organizations that aim to establish systems which support compliance with GDPR and other data protection requirements. Implementation and certification in line with ISO 27701 reduce risk related to the privacy rights of individuals and organizations by enhancing the existing information security management system. Furthermore, the implementation of this standard demonstrates to customers, internal and external stakeholders that efficient systems are in place to support compliance with GDPR and other related privacy legislation, as well as to facilitate agreements with business partners in which processing of personally identifiable information (PII) is mutually relevant.