At a time when digital information is crucial for decision-making, service and societal development, its security needs to be taken very seriously.
At Metria, we work in a structured and risk-based way according to ISO 27001 - a framework that provides clear guidelines for how information is protected, managed and monitored over time. It's not just about technology, but about processes, responsibilities and prevention.
We start from current regulations such as:
- GDPR - for proper handling of personal data
- NIS2 - to secure networks and systems
- DORA - to manage ICT risks and strengthen resilience
Through principles such as privacy by design, 24/7 monitoring and clear requirements in system development, we build a secure foundation for ourselves - and our customers.
Read more here.
ISO27001: To protect customer and employee information, we work according to a structured information security management system. This includes information classification, training, risk management and incident management. All employees undergo annual information security training, and security incidents are handled according to an established process.
The certifications were carried out by an accredited certification body SBcert and apply to all of Metria.
