{"id":1312,"date":"2023-09-06T09:17:39","date_gmt":"2023-09-06T07:17:39","guid":{"rendered":"https:\/\/www.lasos.com\/en\/?page_id=1312"},"modified":"2023-11-10T10:57:21","modified_gmt":"2023-11-10T09:57:21","slug":"iso-27001","status":"publish","type":"page","link":"https:\/\/l23ds.lasos.com\/en\/company\/iso-27001\/","title":{"rendered":"Information security"},"content":{"rendered":"
\n
\n
\n\n

In our highly sensitive business field, a high level of reliability, confidentiality, and integrity in handling sensitive data is essential. Therefore, we have implemented a cross-company Information Security Management System (ISMS) that has been certified by T\u00dcV S\u00fcd according to ISO 27001.<\/p>\n\n\n\n

This ensures, among other things, that all technical and organizational measures are always implemented to comply with the requirements of the Federal Data Protection Act.<\/p>\n\n\n\n

<\/object>ISO 27001 Certificate<\/a>Herunterladen<\/a><\/div>\n\n<\/div><\/div><\/div>\n<\/div>\n<\/div><\/div>\n\n
\n\n

We comply with all information security and data protection requirements<\/h2>\n\n\n
\n
\n\n

Confidentiality and information<\/h3>\n\n\n\n

All sensitive information is exclusively accessible to those individuals who are authorized to use this data.<\/p>\n\n<\/div><\/div><\/div>\n\n

\n\n

Integrity of information<\/h3>\n\n\n\n

All relevant information is reliably protected against unauthorized or unintentional processing, alteration, or deletion.<\/p>\n\n<\/div><\/div><\/div>\n\n

\n\n

Availability of information<\/h3>\n\n\n\n

Information is only available to authorized individuals to the necessary extent \u2013 at the right place and at the agreed-upon time.<\/p>\n\n<\/div><\/div><\/div>\n\n

\n\n

Control and optimization<\/h3>\n\n\n\n

In internal audits, we regularly assess the effectiveness and efficiency of the ISMS, thereby ensuring a continuous optimization process.<\/p>\n\n<\/div><\/div><\/div>\n<\/div>\n<\/div><\/div>\n\n

\n\n

Results of information security management<\/h2>\n\n\n
\n
\n\n

Enhanced personnel security<\/h3>\n\n\n\n

Employees are aware of their responsibility and understand the specific requirements regarding information security. The procedures for unplanned incidents are clearly defined.<\/p>\n\n<\/div><\/div><\/div>\n\n

\n\n

Optimal management of assets and information<\/h3>\n\n\n\n

All assets and stored information of the organization are identified, inventoried, and classified. Their handling (e.g., securing, deletion) is clearly defined and appropriate.<\/p>\n\n<\/div><\/div><\/div>\n\n

\n\n

Access controls for sensitive data and systems<\/h3>\n\n\n\n

A control system ensures that only authorized individuals have access to relevant data, networks, and facilities. Access points are closely monitored, and access rights are regularly reviewed.<\/p>\n\n<\/div><\/div><\/div>\n\n

\n\n

Physical and environmental security<\/h3>\n\n\n\n

All security-relevant assets are located in monitored security zones. Hardware is monitored, protected, and regularly maintained. Procedures for disruptions are detailed and well-documented.<\/p>\n\n<\/div><\/div><\/div>\n\n

\n\n

Secure information transmission<\/h3>\n\n\n\n

The security of transmitted information \u2013 both within the company and with customers and external entities \u2013 is always ensured. This is regulated, among other things, in the supplier contracts.<\/p>\n\n<\/div><\/div><\/div>\n\n

\n\n

Optimized compliance<\/h3>\n\n\n\n

Violations of legal, regulatory, self-imposed, or contractual obligations related to information security, as well as breaches of security requirements, are reliably avoided.<\/p>\n\n<\/div><\/div><\/div>\n<\/div>\n<\/div><\/div>\n\n

\n
\n
\n\n

Your point of contact<\/p>\n\n\n\n

J\u00f6rg Zahoransky <\/p>\n\n\n\n

IT-management<\/p>\n\n\n

\n\n\n \n \n<\/span>it.security@lasos.com<\/span><\/a>\n\n\n\n\n \n<\/span> +49 36 41 – 29 44 0<\/span><\/a>\n\n<\/div>\n<\/div><\/div><\/div>\n<\/div>\n<\/div><\/div>\n\n\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

We comply with all information security and data protection requirements Results of information security management<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":66,"menu_order":93,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"","_seopress_robots_index":"","footnotes":""},"class_list":["post-1312","page","type-page","status-publish"],"acf":{"subheading":"ISO 27001 - certified by T\u00dcV S\u00fcd since 2019"},"_links":{"self":[{"href":"https:\/\/l23ds.lasos.com\/en\/wp-json\/wp\/v2\/pages\/1312"}],"collection":[{"href":"https:\/\/l23ds.lasos.com\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/l23ds.lasos.com\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/l23ds.lasos.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/l23ds.lasos.com\/en\/wp-json\/wp\/v2\/comments?post=1312"}],"version-history":[{"count":4,"href":"https:\/\/l23ds.lasos.com\/en\/wp-json\/wp\/v2\/pages\/1312\/revisions"}],"predecessor-version":[{"id":1523,"href":"https:\/\/l23ds.lasos.com\/en\/wp-json\/wp\/v2\/pages\/1312\/revisions\/1523"}],"up":[{"embeddable":true,"href":"https:\/\/l23ds.lasos.com\/en\/wp-json\/wp\/v2\/pages\/66"}],"wp:attachment":[{"href":"https:\/\/l23ds.lasos.com\/en\/wp-json\/wp\/v2\/media?parent=1312"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}