Verona, Italy (19/02/19) – Arithmos is pleased to announce that, following a thorough audit by a competent authority, it has successfully earned re-certification for the ISO/IEC 27001:2013 standard regarding its Information Security Management System (ISMS).
ISO/IEC 27001:2013 is the best-known international standard for the implementation of an Information Security Management System which includes key processes such as business continuity and disaster recovery. The standard also takes a systematic approach to risk in order to ensure information security and protection – an area which Arithmos sees as absolutely critical in today’s life sciences landscape.
The re-certification of ISMS is an important step in Arithmos’ internal GDPR compliance roadmap. The EU General Data Protection Regulation, specifically Article 32, requires ongoing confidentiality, integrity and availability of processing systems and services as well as a process for risk mitigation.
Paolo Morelli, CEO of Arithmos, says, “in our experience managing clinical and safety data, we are aware of the importance and necessity of data privacy and data security in the era of digital transformation in healthcare. This is why we have invested heavily not only in an internationally recognized standard such as ISO 27001, but also in detailed internal procedures and a comprehensive roadmap that ensure GDPR compliance and peace of mind for our customers that their data and information are always secure and compliant. Today it’s more than an added-value, it’s a necessity”.
As a “data processor”, Arithmos takes necessary measures to ensure data privacy and security for all of its products and applications. The ISO/IEC 27001:2013 standard applies to Arithmos’ proprietary electronic data capture (EDC) system, Symphony EDC, third party EDC applications, Oracle Argus Blueprint safety system, clinical data reporting and analysis tools as well as its HelpDesk ticketing platform.