cegedim.cloud is expert in services management and information security
Personal health data is particularly sensitive, and needs to be hosted in accordance with security requirements that are appropriate to their criticality. That’s whycegedim.cloud has voluntarily adopted a strategy which enables it to address critical data protection and security issues.
With its numerous certifications and statements of conformity, cegedim.cloudensures that its information system is powerful, reliable and optimised to guarantee an environment of trust and service quality for its customers and partners.
CERTIFICATIONS AND STATEMENTS OF CONFORMITY
cegedim.cloud has been HDS (French healthcare data hosting) accredited since 2009, and now holds both HDS certifications: Hébergeur d’Infrastructure physique (physical infrastructure host) and
Hébergeur Infogéreur (data host/manager), i.e. all activities from 1 to 6 in the HDS standard.
ISO 27001:2013 certification
With its ISO 27001:2013 certification, cegedim . cloud demonstrates its maturity and expertise in information security management.
ISO 20000-1:2018 certification
With its ISO 20000:2018 certification, cegedim.cloud is strengthening its positioning in services management and demonstrating a strong customer commitment. Services life cycle management and continuous improvement is provided through its management system, providing an optimal solution to customer needs and requirements.
ISO 27017:2015 conformity
Conformity to the ISO 27017:2015 standard ensures our customers that we adhere to best practices in the security controls we implement through our cloud services.
ISO 27018:2014 conformity
Conformity to the ISO 27018:2014 standard ensures our customers that we adhere to best practices in protecting the personal data we host through our cloud services.
ISAE 3402 Type II
The annual ISAE 3402 Type II report provides cegedim.cloud customers with evidence of the benefits and effectiveness of its internal control system in combating risks, and demonstrates control over the activities managed on behalf of its customers.
Quality of services provided
Data availability, integrity, confidentiality and auditability
Effective management of the service life cycle
Compliance with the General Regulations for the Protection of Personal Data (GDPR)
Adoption of best practices for security and information management
AN HDS REQUIREMENT LEVEL APPLICABLE TO ALL AREAS OF ACTIVITY
As a health data hosting pioneer, cegedim.cloud complies with the highest international standards, demonstrating its know-how and commitment to operational excellence in cloud-related business areas. This information security and service management expertise applies to all areas of activity in which personal or confidential data are managed.