Certifications

Certified by ISAE 3402 TYPE II

Austrian Reporting Services GmbH has been certified by ISAE 3402 TYPE II (audit of the internal control system) successfully since 2016.

The expediency of the quality assurance measures of all the services provided to the clients was assessed including:

• Security and risk management
• Requirement management
• Release and Deployment Management
• Software development (test management and change management) as well as
• Application operation incl. support (incident management)

The audit was undertaken by the external independent auditing firm Ernst & Young.

ISAE (International Standard on Assurance Engagements) 3402 is an international auditing standard for internal control systems.

• Report type I audits the control design.
• Report type II further audits the effectiveness of the controls in practice over a period of 6 months at least, which enables an even more reliable and stringent assessment.

Austrian Reporting Services GmbH has met all the requirements of the ISAE 3402 Type II audit .

For our company and clients, this represents measurable evidence of effectiveness and security as well as long-term review and optimisation of the entire internal control systems.

Certified according to ISO/IEC 27001:2013

The Information Security Management System (ISMS) of Austrian Reporting Services GmbH has been certified by ISO/IEC 27001 successfully since 2018.

The ISMS encompasses both internal services and all the services provided to the clients.

The audit was undertaken by the external independent company TÜV SÜD Management Service GmbH.

ISO/IEC 27001 is an international standard that specifies the requirements for establishment, implementation, maintenance and continuous improvement of a documented ISMS.

Austrian Reporting Services GmbH has met all the requirements of the ISO/IEC 27001:2013 certification .

For our company and clients, this represents measurable evidence of effectiveness as well as continuous improvement of the ISMS.