We are proud owners of an ISO 27001 certificate. This says a lot about the way we work, because the protection of information and data is anchored in our work processes. The ISO certificate confirms that we have those processes in order and that your data are in good hands with us. Our processes are laid down in an Information Security Management System (ISMS) and are tested periodically.
Privacy is an important part of ISO 27001 certification. Therefore, we have presented in a short statement how we at ANVA handle the processing of information in general and personal data in particular. This statement, called Privacy Statement, is intended for everyone dealing with ANVA: employees, customers, suppliers and other stakeholders.
AVG
Weensure that our solutions do not hinder our users from complying with the AVG. Our solutions are continuously updated on this. Because we process personal data for our customers, we record agreements about this in a processor agreement. Linked to our processor agreement is a dynamic annex. It describes the specific processing activities associated with the various products and services our customers purchase. This annex is made dynamic so that everyone always has an up-to-date overview.
DORA
The financial sector is becoming increasingly dependent on software and IT infrastructure for its services, which increases its vulnerability to problems such as cyber-attacks. To address the proliferation of IT threats and the development of resilience, DORA was created. A European IT law that financial institutions must comply with from January 2025. Want to read more about DORA? We have gathered all information about DORA in a topic file.
Information Security
Confidential handling of customer data in ANVA and compliance with appropriate Information Security levels of our systems is critical. For that reason we would like to give you insight in our Information Security measures. And in our and your responsibilities. So that you can more easily demonstrate that you are in control in that area.
Information Security Letter for relations in the Caribbean
Ifyou work in the Caribbean region or Suriname, you have to deal with different legislation and regulators than in Europe. To help you interpret the Information Security of our hybrid ANVA setup, we have prepared an Information Security Letter for you. In it you can read, among other things using graphics and FAQs, how you can interpret our Information Security from your own field of work. This document is in English.
