How secure is the Spend Cloud?
More information on cyber security
Ensuring the safety and accessibility of your data. As an organization, it is crucial to ensure the safety and accessibility of your data. Compliance with laws and legislation is a priority, and minimizing risk is essential. Additionally, control over employee access to information is necessary. Visma | ProActive guarantees the cyber security of your data and limits access to only authorized personnel.
Cyber security information on this page
- Visma’s cyber security guidelines the Spend Cloud adheres to
- The ISAE 3402 Type I and II standard the Spend Cloud adheres to
- The ISO 27001 standard the Spend Cloud adheres to
- The ISO 9001 standard the Spend Cloud adheres to
- The business recovery and continuity plan
- The Spend Cloud’s audit feature
- Our additional measures to ensure cyber security
To learn more about why cyber security is crucial, read about social engineering on the Visma-blog.
The importance of cyber security
The importance of cyber security is highlighted in the following ways:
- Raising awareness about cyber security reduces the risk of data leaks and other disastrous outcomes
- Raising awareness about cyber security reduces the risk of being locked out of software
- Raising awareness about cyber security reduces the risk of unauthorized access to data
VASP guidelines for software development
To guarantee data security, cyber security, and privacy, Visma has created the Visma Application Security Programme (VASP). This program is based on industry standards and best practices from various Visma companies. VASP ensures the confidentiality and integrity of your data. Learn more about VASP on the Visma website.
VCDM guidelines for cloud applications
In addition to VASP, Visma has created a framework specifically for cloud applications: the Visma Cloud Delivery Model (VCDM). This system includes change, problem, release, and access management, as well as attention to cyber security and data security. Read more about VCDM on the Visma website.
ISAE Type I and II standards
The ISAE 3402 Type I and II standards are internationally recognized standards that guarantee the safety of your data when being handled by a software supplier. Since Visma | ProActive adheres to the ISAE 3402 Type I and II standards, we can guarantee that we take the right measures to adhere to data security laws and legislation.
ISO 27001 standard
The ISO 27001 standard describes the criteria an Information Security Management System (ISMS) must meet when creating, implementing, maintaining, and improving it. The Spend Cloud and Visma | ProActive’s services adhere to these criteria.
ISO 9001 standard
The ISO 9001 standard is based on various quality management principles, including customer focus, motivation and implication of top management, and continuous improvement. It provides criteria for a Quality Management System (QMS), which the Spend Cloud and Visma | ProActive’s services adhere to.
Additional measures to ensure cyber security
- Employee training
- Use of secure coding standards like the OWASP guideline
- Daily testing
- A certified SSL connection
- Intrusion Detections Systems (IDS)
Curious to know more? Download the cyber security factsheet!
Business recovery and continuity plan
The VCDM also describes scenarios in case something goes wrong with the products or services we provide. Read more about VCDM on the Visma website.
The Spend Cloud’s audit feature
To provide customers with control over their data, the Spend Cloud offers an audit feature that allows them to demonstrate compliance with sector-specific standards, quality criteria, and laws and regulations.
Learn more about Visma | ProActive’s way of working
At Visma | ProActive, we prioritize not only the cybersecurity of our products and services but also our work culture and values. We believe in trying new things and enjoying the process, which is reflected in our organizational values of being fun, factual, and flexible. If you want to learn more about how we work, visit our about us page.