Our services and operation conform to international standards and regulations
Customers need insight, transparency and information regarding technical and organizational security measures and controls. This type of information will (1) give an understanding of Tietoevry’s control environment processes and control objectives, (2) support customers own risk assessment and (3) fulfil customers compliance requirements.
To achieve this Tietoevry can provide third-party assurance. Attestations are given according to the International Assurance standards, ISAE3000 (Privacy) and ISAE3402,both type 2. The attestations give confidence and trust that controls are functioning as intended.
If you have any questions or queries please feel free to contact us by quality.assurance(at)tietoevry.com
ISO 9001 is defined international standard that specifies requirements for aquality management system. Tietoevry use the standard to demonstrate the ability to consistently provide products and services that meet customer and regulatory requirements.Learn more
ISO 27001, is an information security management standard jointly-published by the International Organization for Standardization, and the International Electrotechnical Commission.Learn more
ISO 22301-aligned business continuity management system provides a policy and operational framework for disaster recovery and business continuity plans. Having one will help your organization recover critical operations as quickly as possible.Learn more
ISO/20000-1: Service management supports the management of the service lifecycle, including the planning, design, transition, delivery and improvement of services, which meet agreed requirements and deliver value for customers and users.Learn more
ISO 14001 is the principal management system standard which specifies the requirements for the formulation and maintenance of an EMS. This helps to control your environmental aspects, reduce impacts and ensure legal compliance.Learn more
ISO 13485 is designed to be used by organizations involved in the design, production, installation and servicing of medical devices and related services. It can also be used by internal and external parties.Learn more
The Security, Trust, Assurance, and Risk (STAR) Registry is a publicly accessible registry that documents the security and privacy controls provided by popular cloud computing offeringsDownload the certificate
CSA STAR Self-Assessment is a complimentary offering that documents the security controls provided by various cloud computing offerings, thereby helping users assess the security of cloud providers they currently use or are considering using.Download the certificate