Our services and operation conform to international standards and regulations
Third-party assurance.
Customers need insight, transparency and information regarding technical and organizational security measures and controls. This type of information will (1) give an understanding of Tietoevry’s control environment processes and control objectives, (2) support customers own risk assessment and (3) fulfil customers compliance requirements.
To achieve this Tietoevry can provide third-party assurance. Attestations are given according to the International Assurance standards, ISAE3000 (Privacy) and ISAE3402,both type 2. The attestations give confidence and trust that controls are functioning as intended.
If you have any questions or queries please feel free to contact us by quality.assurance(at)tietoevry.com
ISO 9001 is defined international standard that specifies requirements for aquality management system. Tietoevry use the standard to demonstrate the ability to consistently provide products and services that meet customer and regulatory requirements.
Learn moreISO 27001, is an information security management standard jointly-published by the International Organization for Standardization, and the International Electrotechnical Commission.
Learn moreISO 22301-aligned business continuity management system provides a policy and operational framework for disaster recovery and business continuity plans. Having one will help your organization recover critical operations as quickly as possible.
Learn moreISO/20000-1: Service management supports the management of the service lifecycle, including the planning, design, transition, delivery and improvement of services, which meet agreed requirements and deliver value for customers and users.
Learn moreISO 14001 is the principal management system standard which specifies the requirements for the formulation and maintenance of an EMS. This helps to control your environmental aspects, reduce impacts and ensure legal compliance.
Learn moreISO 13485 is designed to be used by organizations involved in the design, production, installation and servicing of medical devices and related services. It can also be used by internal and external parties.
Learn moreThe Security, Trust, Assurance, and Risk (STAR) Registry is a publicly accessible registry that documents the security and privacy controls provided by popular cloud computing offerings
Download the certificateCSA STAR Self-Assessment is a complimentary offering that documents the security controls provided by various cloud computing offerings, thereby helping users assess the security of cloud providers they currently use or are considering using.
Download the certificateProvision of Information Security to IaaS Services in accordance with the Statement of Applicability Version 4.0
Download the certificate