| Customers: AIG Insurance (AIG insurance company, earlier Chartis)
Contractors: Leta IT-company Product: Projects of external audit of IT and security (in tch PCI DSS and SUIB)Project date: 2012/02 - 2012/04
|
The company LETA brought processing of PDN Chartis Ltd into accord to requirements of the legislation of the Russian Federation and regulating authorities.
Solution
The project consisted of several stages. The first – inspection and the analysis of processing of PDN. The analysis of collected information and development of reporting documentation became the next step. In particular, the personal data processed in SK "Chartis" are defined, selected and classified ISPDN, relevant security risks of PDN are identified (according to requirements of FSTEC of Russia and FSB of Russia).
At the final stage of the project specialists of LETA company together with the staff of SK "Chartis" developed the packet of organizational and administrative documentation adapted for specialists of insurance company conforming to all requirements of the legislation and also meeting requirements of a system of documentary providing the company.
System implementation of personal data protection in SK "Chartis" – commissioning of organizational legal documents and implementation of information security tools became a result of the project.
Opinion
"In Chartis company within personal data protection of our clients and partners close attention was always paid to observance of the Russian legislation and high standards of the company in the field of IT security and confidentiality of data, – Andrey Davydov, the Head of Department of IT and software solutions of Chartis Ltd emphasized. – For fast and high-quality implementation of the tasks we looked for the partner who would execute all cycle of works, and at the highest technological level, with accurate project organization and with full compliance with all legal regulations".
"In projects on personal data protection technical, legal and organizational components are equally important. The system of protection should not only work well, but also to be constructed taking into account all requirements of the regulatory base, – Andrey Konusov, the CEO of LETA company told. – Thanks to invariable interest of Chartis insurance company in creation of the faultless solution and accurate splitting the project into stages we managed to involve in full examination of the company in the field of personal data protection and to create a system, highly effective technically and correct legally".
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |