ISO/IEC 27001 Certification in Germany

Eng. Neno Nedyalkov and Galina Vasileva from Dedal, together with the Information Security Officer (ISO) of Kerberos Compliance.

We are pleased to share that Dedal and Kerberos Compliance have completed the audit for certification of the Integrated Management System (IMS) of the company according to following standards: 

  • EN ISO/IEC 27001:2017 - Information security, cybersecurity and privacy protection - Information security management systems - Requirements.
  • EN ISO/IEC 27701:2021 - Security techniques - Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management - Requirements and guidelines.
  • ISO 37301:2021 - Compliance management systems - Requirements with guidance for use.

Kerberos Compliance is a leading service provider for money laundering prevention in Germany. With many years of experience and comprehensive expertise, they support companies in effectively implementing all legal requirements and identifying and minimizing risks in connection with money laundering (AML) and terrorist financing. Their services range from KYC checks, due diligence audits, risk analyses, guidelines, employee training, transaction monitoring to whistleblower systems, data protection management systems and the provision or certification of money laundering reporting officers.

The audit reviewed the organization's implementation of privacy controls as specified in the relevant standards, which serve as foundational frameworks for information security management. These controls cover various aspects such as access control, data encryption, incident management, and risk assessment. Furthermore, the audit specifically focuses on the extension provided for privacy information management. This entails assessing how effectively the organization addresses privacy concerns in its operations, including data collection, processing, storage, and sharing activities. It involves evaluating the adequacy of measures taken to ensure compliance with applicable privacy laws and regulations, such as for example the GDPR (General Data Protection Regulation) in Europe and other international and local norms. 

We want to congratulate Kerberos Compliance on their responsible approach towards information security and compliance management and wish them further success on the market.