Data Security

Data Security guidelines  accordingto § 11 BDSG (Federal Data Protection Act) in order data processing

More and more enterprises tending to outsource their systems are enquiring whether data security in the data centers of FIS-ASP can really be guaranteed. Besides of the technical aspects of this query, FIS-ASP is obliged by law to data security as each other German enterprise is.

Although outsourcing of software and hardware as outsourcing or software as a service (SaaS) enjoy greater and greater popularity, there is still a rather high degree of uncertainty predominating with a view to data protection requirements. It is worthwhile for each enterprise to precisely check the contracts in the regard that specifications of this new § 11 of Federal Data Protection Act are met. Clients as well as providers must not close their minds to this matter. We want to provide any assistance required.

We want to participate:

Although outsourcing of software and hardware as outsourcing or software as a service (SaaS) enjoy greater and greater popularity, there is still a rather high degree of uncertainty predominating with a view to data protection requirements. It is worthwhile for each enterprise to precisely check the contracts in the regard that specifications of this new § 11 of Federal Data Protection Act are met. Clients as well as providers must not close their minds to this matter. We want to provide any assistance required.

According to the Federal Data Protection Act the client remains fully responsible for the legality of processing its employee and customer data by the SaaS provider and is obliged to select the provider thoroughly, to regularly control this provider and to document the check results. Since Sep 1, 2009 the FDPA has been including a 10 items catalogue with subject matters which are compulsively to be implemented in a written contract for order data processing. In case of inadequate contracts, clients may be faced with fines of up to 50,000 EUR.

As provider FIS-ASP ensures that its standard terms of contract (General Terms) meet the legal requirements. Unfortunately, a lot of providers are still neglecting the data privacy compliance requirements of their clients.

We simplify security matters a priori for you and for us as we comply with the infrastructure and processes requirements at any time and are pleased to offer you the opportunity of getting convinced.