Avenum EDI Service Partners is certified according to ISO/IEC 27001:2022! As an EDI Service Provider, we take daily responsibility for our customers’ business-critical data, processes, and systems. This is precisely why we regard information security as a core component of our service and an essential element of customer care. Our goal is to ensure reliable, secure, and continuously available EDI operations. Because: Our EDI Service is your success.
Information security as part of our corporate culture
Our services — from implementation and provisioning to the operation of conversion and communication solutions — are entirely based on IT-driven processes. A high level of information security therefore forms the foundation for stability, trust, and long-term collaboration.
For us, information security goes beyond technical measures. We foster an active security culture in which all employees are involved. Regular training sessions and clearly defined responsibilities ensure this commitment.
Our protection objectives: availability, integrity, and confidentiality
Our information security strategy consistently follows the three core protection objectives:
1. Availability
Our systems and Services must be accessible at all times. High availability is crucial for us to reliably support our customers’ business processes. Through clearly defined Service Level Agreements (SLAs), we guarantee availability of at least 99.5% — around the clock.
2. Integrity
Data must be accurate, complete, and protected against manipulation. Only in this way can we guarantee secure processes — both internally and for our customers and partners.
3. Confidentiality
Protecting sensitive, confidential, and personal information is our highest priority. Data access is clearly regulated, information is classified, and processed only to the extent necessary.
Measures that make security tangible
Our information security measures are clearly structured, documented, and implemented on a role-based basis. They include, among other things:
- the secure handling of information and data storage media
- clear rules for mobile work and remote access
- a comprehensive access and authorization concept
- security measures for premises and IT infrastructure
- defined processes for employee onboarding, offboarding, and reboarding
- regular training and awareness initiatives
A living ISMS in accordance with ISO/IEC 27001:2022
To systematically implement our information security objectives, we operate an Information Security Management System (ISMS) in accordance with ISO/IEC 27001:2022. This system provides the framework for:
- risk management and threat assessment
- regular internal and external audits
- measurable security objectives and key performance indicators
- management reviews for continuous governance
- ongoing improvement of all security measures
Our ISMS is regularly reviewed and continuously developed — not only to meet standard requirements, but to remain effective in the long term.
Why ISO/IEC 27001 is relevant for our customers
ISO/IEC 27001 provides an internationally recognized and robust foundation for information security. It makes our security measures auditable, comparable, and transparent — especially in the context of business-critical EDI processes.
Conclusion: At EDI Service Partners Avenum & Avedium, information security is a continuously practiced process. With clear objectives, structured measures, and a strong security culture, we create the foundation for a stable and reliable EDI Service.
General information
You can access the certificate at https://www.certipedia.com/certificates/01+153+2500532?locale=de. The certification process was conducted by TÜV Rheinland AG.
Scope: EDI Service Provider for the implementation, provisioning, and operation of conversion and communication services.
You are welcome to reference that you handle your electronic data interchange via Avenum EDI Service Partners and to mention our ISO/IEC 27001 certification.
Contact us
Herbert Ferstl
CISO
E-Mail: ciso@avenum.com
Tel: +43 1 92101-0