Ecritel has obtained the HDS certification in 2019 - HDS certification standard 1.1 - June 2018 -
The "Physical Infrastructure Host and Hosting Healthcare Data Provider" certification guarantees the confidentiality, integrity, availability and traceability of this sensitive information.
This certification implies the respect of many technical and organizational security requirements. Please find the certificate here.
The ISO 27001 standard, published in November 2005, lays the framework for Information Security Management within a company. It integrates the principles of ISO 9001 management as well as the PDCA (Plan, Do, Check, Deming Cycle Act) of continuous improvement.
Ecritel obtained ISO 27001 certification in May 2018 across its entire scope of activity. Please find the certificate here.
Ecritel is certified AFAQ ISO 9001 "Quality Management System" since 2009. In accompanying our services, our customers are at the center of our concerns. This certification allows us:
Ecritel has successfully obtained its ISAE 3402 SOC 2 compliance attestation, an internationally recognized standard issued by the IAASB ("International Auditing and Assurance Standards Board").
This attestation proves the quality and reliability of our processes and their internal control, both technically and financially. You can contact our RSSI at the following address rssi@ecritel.net in order to obtain the certificate related to this compliance.
Ecritel's project managers, engineers and technical managers are ITIL certified. We have adopted and adhere to ITIL V3 best practices, which set the rules for information system and user support. Applying ITIL practices allows us to provide a service that meets pre-established quality standards internationally.
PCI DSS is established by payment card providers and is managed by the PCI Security Standards Council. This standard was created to increase the control of cardholder information in order to reduce the fraudulent use of payment instruments. Ecritel has been certified PCI DSS since 2017.
The GDPR, General Data Protection Regulation, aims to harmonize data protection legislation on the European market so that individuals can control their personal data. This new regulation aims to improve international relations, to create trust for individuals about the protection of their information.
Ecritel is Compliant GDPR thanks to the implementation of adapted security measures proposed to its end customers.