Quality and information security

FocusCura is ISO/IEC 27001 certified. To maintain this certification, regular audits are conducted to ensure that we meet the strict quality and information security standards.

Information security: ISO/IEC 27001

ISO/IEC 27001 is the international standard for information security. This certificate demonstrates our commitment to keeping confidential information secure.

In practice, this means:

Information security refers to all of the measures we take to ensure the availability, integrity, confidentiality and verifiability of information. These terms are explained in more detail below.

Availability

Availability refers to making information and key services available at the right time and in the right form.

FocusCura aims to make the information systems used either directly or indirectly by our clients available seven days a week between 7:00 AM and 10:00 PM, with a 98% guarantee.

Integrity

Integrity refers to ensuring that the information is correct, accurate, and complete.

At FocusCura, we train our employees and those of our clients in the proper use of these information systems. We also take measures to verify the integrity of our data and to ensure that they are correct and complete.

Confidentiality

Confidentiality means that data can only be viewed and edited by authorized individuals.

At FocusCura, all internal employees, seconded employees, and external users must meet strict conditions before they are given access to this data. A transparent protocol is in place to determine who has access to which information systems.

In addition, all necessary steps have been taken to minimize unauthorized access to customer, client, and employee information.

Verifiability

Verifiability means that data is stored in one place. We have continuous access to these storage locations and can verify the origins of all data.

Information security

Our goal for information security is twofold:

  1. We want to continuously improve collaboration and make the necessary time for this;
  2. We want to minimize any damage or consequences for an organization following a security incident.