VirtusLab announces TISAX compliance

We have achieved compliance with another information security standard, as demonstrated by obtaining the TISAX label.?

This recognition positions us as a dependable and trusted service provider for the automotive industry. We have held TISAX assessment level 2 since July 2023, a certification which enforces standards for:

• Information with High Protection Needs
• High Availability
• Data Protection according to EU-GDPR Art. 28 (“Processor”)

This certification shows that we adhere to strict protocols in information security, data protection, and the secure integration of third-party connections, ensuring its clients' safety. We are proud of this accomplishment and are pleased to share the news with the public.

VirtusLab acknowledges the paramount significance of implementing a strong, standardised, and transparent information security protocol tailored to meet the unique needs of the automotive industry. In this post, we look into why such measures are indispensable and shed light on the significance of being awarded a TISAX label.

Information security in the automotive industry?

The basic principle of information security is to protect your organisation and its partners from unauthorised access to sensitive information such as company performance, business prospects, intellectual property, product roadmaps, pricing and details of the organisational structure.

Within the context of the automobile industry, there is a necessity for an all-inclusive system of protocols for information security. These protocols guarantee a secure design data exchange with external vendors during development processes and ensure requisite security levels for smooth manufacturing operations. Moreover, information security plays a pivotal role in streamlining the automated exchange of data between connected production systems, increasing the availability and reliability of production processes.

The importance of information security goes beyond the vehicles we drive. Contemporary cars are not just mechanical devices. They combine cutting-edge software, hardware, and online connectivity. They gather and save long-term driving behaviour data, shaping future car designs. Therefore, safeguarding this information from unauthorised access is vital.?

As a result, service providers and suppliers within the automobile industry must consistently adhere to standardised and industry-specific information security regulations to gain and maintain the trust of their customers.

About TISAX

The Trusted Information Security Assessment Exchange (TISAX) is a standardised assessment and exchange mechanism within the automotive industry.?

TISAX is based on the Information Security Assessment (ISA) framework developed by the German Association of the Automotive Industry (VDA). It is widely adopted as a mechanism for inter-company testing and exchanging security assessments.?

The primary objective of TISAX, developed under VDA's guidance, is to ensure a consistent and uniformly high level of information security across the industry. The benefits of obtaining a TISAX label include standardisation, quality assurance, and mutual recognition of audits among companies.?

TISAX provides a structured framework for conducting information security assessments by audit providers under VDA standards. This framework helps prevent the need for redundant or subpar audits.?

VirtusLab underwent a rigorous evaluation process to obtain the TISAX label, involving months of preparation and independent auditing. VirtusLab expressed pride in the efforts of the Internal Security Team and assured partners in the automotive industry that their data is secure with VirtusLab. To access the results of VirtusLab TISAX assessment, you can find them on the TISAX portal by clicking here (available after registration).?

Other security standards held by VirtusLab

We have some more exciting news to share with you! From May 2021 on, VirtusLab has also achieved ISO 27001 certification. ISO 27001 is an internationally recognized standard for information security that outlines the requirements for an effective information security management system (ISMS).

This best practice approach focuses on three critical aspects: people, processes and technology. Adherence to ISO 27001 allows organisations to manage their information security efficiently.

ISO 27001 certification is a global testament that a company's ISMS complies with the highest information security best practices.

By holding both the TISAX label and ISO 27001 certification, VirtusLab conforms to some of the most rigorous information security protocols and processes. Our commitment ensures the highest level of protection and security for all our customers, partners, and employees.

If you have any further queries regarding information security at VirtusLab, including the TISAX label and ISO 27001 certification, please do not hesitate to contact us. We will be more than happy to assist you promptly.