Yakutskenergo brings ISPDN into accord to requirements of the federal legislation

The Leta company completed the complex project on reduction of personal data information systems (ISPDN) of JSC Yakutskenergo in compliance to requirements of the federal legislation regarding processing and a personal data storage.

Solution

During the project specialists of Leta conduct examination ISPDN of Yakutskenergo within which were selected and previously classified ISPDN, relevant security risks of personal data are identified. On the basis of the carried-out works specialists of Leta prepared a set of the documents regulating actions for personal data protection and also submitted detailed recommendations to the customer on change of internal processes of processing of PDN for a full compliance to requirements of the legislation of the Russian Federation. The system of personal data protection designed and implemented in an information structure of Yakutskenergo became a result of the project.

Opinion

"At the moment one of the most relevant tasks facing division of information security of the large power company is ensuring compliance to requirements of the law on personal data — the deputy CEO for security of Yakutskenergo Yury Savchuk noted. — The system of personal data protection which is completely corresponding to the legislation became result of implementation of our project with Leta company. Thus, we provided full personal data protection of consumers of electrical and thermal energy, shareholders and employees of JSC Yakutskenergo and also other data processed in our information systems".

"Inspection ISPDN is an effective solution for reduction of the personal data information systems which are available in the organization in compliance to requirements of federal law No. 152 "About personal data". Implementation of our recommendations allowed the Yakutskenergo company having the specifics and branched structure to build the system of personal data protection which is completely corresponding to the legislation — Andrey Konusov, the CEO of Leta company reported. — It should be noted that the technique developed by our company allows to develop within one project recommendations both about effective management of information security, and about reduction of an information system in compliance to requirements of the law".