The data security system of the Finnish Agency for Rural Affairs (Mavi) fulfils the requirements of the ISO/IEC 27001:2005 standard.

The Information Security Management System (ISMS) certified on the basis of international ISO/IEC 27001 standard proves that Mavi manages its information in a way that keeps it accurate, easy to use and well protected.

The standard covers all sub-areas to data security:

  • Specification of the comprehensiveness of the system, risk assessment and documentation management

  • Data security principles and objectives approved by the executive management

  • Duties and responsibilities within the organisation

  • Protection of data, facilities and equipment

  • Minimisation of human errors and abuses

  • Protection of facilities and systems containing data

  • Management of hardware and telecommunications

  • Development and maintenance of data systems

  • Contingency systems and plans

  • Compliance with legislation.

Inspecta Sertifiointi Oy granted the certificate to the Finnish Agency for Rural Affairs in March 2010. The compliance of operations with requirements will be reviewed twice a year.