Leta estimated the level of compliance of processing of PDN "Breweries Moscow Hilt" to requirements of the legislation of the Russian Federation

The Leta company — operator of the typified IT services — announced project completion according to the level of compliance of processing of the personal data (PDN) "Breweries Moscow Hilt" (Efes group in Russia) to requirements of the legislation of the Russian Federation and regulating authorities. The received results will allow the customer to select an optimal variant of creation of a system of personal data protection (SZPDN).

At the time of the beginning of the project the standards of security and technological solutions existing in Efes Group provided rather high level of personal data protection. Evaluating the existing standards and technologies on compliance to the newest requirements of the Russian legislation was the major task, explained in Leta.

The project consisted of several stages. The first turned on inspection and the analysis of processing of PDN. The analysis of collected information and development of reporting documentation became the next step. In particular, the personal data processed in the company were defined, selected and classified ISPDN, relevant security risks of PDN are identified (according to requirements of FSTEC of Russia and FSB of Russia). At the final stage of the project specialists of Leta company developed a set of the documents regulating actions for personal data protection "Breweries Moscow Hilt".

"Compliance to rules of law — the mandatory and natural requirement to our company — Tunzher Hamza, the manager of department of information resource management of Efes Group in Russia said. — Today the perspective of personal data protection comes out on top. Timely to create the corresponding system, it was extremely important to us to estimate in a complex our rather complex information system and organizational procedures from positions of the existing regulatory base. Also it was necessary to work options and to understand in what degree protection of PDN will affect different business processes, and on the basis of data retrieveds jointly to design and further to implement the system of confidential information protection".

"In projects on personal data protection technical, legal and organizational components are equally important. The system of protection should not only work well, but also to be constructed taking into account all requirements of the regulatory base — Andrey Konusov, the CEO of Leta company emphasized. — Thanks to invariable interest of the customer in creation of the faultless solution and accurate splitting the project into stages we managed to involve in full examination of the company in the field of personal data protection and to create a system, highly effective technically and correct legally".