We designed, established and apply an integrated Information Security Management System (ISMS) which is certified by TÜV AUSTRIA HELLAS for meeting the requirements of relevant international standards: EN ISO 9001:2015 (Quality Management Systems) and ISO/IEC 27001:2013 (Information Security Management Systems) and is certified regularly.
Notably, our application hosting services provided via our company’ s Internet Data Center have been included since 2005, in the context of BS 7799-2 (which was adopted by ISO as 27001). NEUROPUBLIC was the first Greek Informatics company to provide application hosting services in a certified Information Security Management System.
The scope of the current Information Security Management System (ISMS), which applies to all company’s Divisions and Departments in our headquarters in Piraeus as well as the regional offices, is:
Providing services for the Agricultural Sector
Providing Application Hosting services
Analysis, Design, Development, Customization, Installation, Maintenance, Technical Support and User Training of Informatics Systems
Analysis, Design, Development, Customization, Installation, Maintenance, Technical Support and User Training of Geographic Informatics Systems
Design, Manufacturing, Installation, Maintenance and Support of telemetry stations
We are one of the few companies that designed and apply an integrated management system where all the requirements of relevant international ISO standards have been integrated (EN ISO 9001 and ISO/IEC 27001).
In the context of designing and applying the integrated Information Security Management System we cooperate with the Laboratory of Information & Communication Systems Security of the University of the Aegean to conduct the required studies for risk management analysis.
This certification is the hallmark of our orientation to provide complete informatics solutions and services, with a high level of information quality and security.
NEUROPUBLIC SA was certified on 3-4-2017 according to the international standard PCI-DSS (Payment Card Industry – Data Security Standard) for fully complying with the regulations set by PCI-DSS regarding data security, as informatics company participating in a transaction chain, as a cloud services provider.
Based on this standard, the company applies and fully complies with all requirements and regulations of the PCI-DSS, concerning the transfer, process or storage of credit card data, as well as concerning its software and applications used for this kind of transactions.
Demonstrating compliance to the standard is required by the Credit Card Associations, more specifically by VISA, MasterCard, American Express, Discover and JCB, while the certification procedure, issuing and enhancement of the standard is provided by the independent organisation Payment Card Industry Security Standards Council (PCI-SSC).