The General Data Protection Regulation (GDPR) of the European Union becomes effective on 25 May 2018. Information security and data protection is the top priority for Open Systems. It is our particular concern to optimally protect our customers and partners worldwide in their preparations for GDPR.
Alongside actions to continously classify and protect the data of our customer, we would like to highlight the following points to support our customers become GDPR compliant.
1. ISO 27001 certification
2. Nomination of a Chief Security Officer
In order to reinforce the topic of customer and partner security within the company and accentuate it in corporate governance, the Executive Board of Open Systems was extended with the role of Chief Security Officer for which Sven Brülisauer was appointed in June 2017.
3. Responsibility regarding the EU General Data Protection Regulation (GDPR)
Open Systems explicitly takes on the responsibility of following the General Data Protection Regulation (GDPR) of the European Union as well as the general conditions for data protection in Switzerland.
In this way, Open Systems would specifically like to reinforce its high standards regarding data protection for customers and partners.
4. Switzerland is a secure country outside the EU for European Union customers
After evaluating the adequacy of the protection level, the EU Commission has conferred to Switzerland the status of a secure third country, i.e. a secure country outside the EU.
The Federal Council of Switzerland has clarified that the new Swiss laws regarding data protection will assume the requirements of the EU General Data Protection Regulation, in order for Switzerland to be classified as a secure third country in the future.